KBKAST

Join KB as she sits down with Mark Anderson, National Security Officer – Australia and New Zealand from Microsoft, who will give us an exclusive sneak peek into what you can expect from Microsoft AI Tour 2024 happening in Sydney at the ICC on December 11th. Mark shares insights into the event’s focus on real-world AI implementations by leading Australian organizations, highlights the tour’s comprehensive cybersecurity content, including Microsoft’s Secure Future Initiative, and the establishment of a local base of the Microsoft Threat Intelligence Center (MSTIC) in Australia.

Mark has over 28 years’ experience in the IT industry with 18 of those at Microsoft in various roles across the globe. As the National Security Officer for Microsoft Australia & New Zealand, Mark is responsible for working with customers, partners, governments, and industry regulators to ensure that the Microsoft platforms are not only understood by policymakers but also adhere to their security, compliance and risk management requirements. In addition, Mark is accountable for the PROTECTED level assessment of Azure, Office 365, and Dynamics. Mark holds a Master of Cyber Security degree with high distinction from Edith Cowan University and is a Visiting Associate Professor at Macquarie University.

In this episode, we sit down with Kelly Sabo, Head of SMB and Mid Market ANZ at Cisco, as she discusses cybersecurity essentials for small and medium businesses (SMBs). Kelly delves into the misconceptions SMB owners have about their vulnerability to cyber attacks, the alarming statistic that up to 60% of SMBs risk going out of business within 6 months post-attack, and the critical need for a comprehensive approach that goes beyond IT. We also explore how SMBs can tackle these challenges with limited resources, the benefits of outsourcing cybersecurity to experts, and the role of AI in automating security tasks to enhance protection. Additionally, Kelly emphasizes practical steps SMBs can take, like implementing multi-factor authentication and conducting risk assessments, to bolster their security without incurring enterprise-level costs.

Kelly Sabo, Leader – Small & Medium Business and Commercial Mid-Market, Cisco Australia & New Zealand

With over a decade of experience in the technology sector, Kelly is dedicated to empowering small and medium businesses (SMBs) and commercial mid-market enterprises to thrive in today’s digital backdrop. As the leader for SMB and mid-market sized customers at Cisco ANZ, Kelly is deeply committed to leveraging Cisco’s cutting-edge technologies to drive growth, efficiency, and competitiveness for businesses of all sizes.

Kelly‘s expertise lies in understanding the unique challenges and opportunities faced by SMBs and mid-market enterprises, particularly in an environment where the adoption of cloud and software as a service solution has reshaped the industry landscape. She is passionate about helping organisations harness the power of cloud managed networking, security, and collaboration to meet the demands of the modern business world. 

Kelly’s experience covers multiple technology companies including Oracle, NetApp and now Cisco,  from sales leadership, managing partners, distributors, account management and sales operations.

Since joining Cisco in 2015, Kelly has held various leadership, channel, and sales roles, gaining valuable insights into the dynamic nature of the technology ecosystem. Her extensive knowledge of the channel space provides her with a unique perspective in helping partners adapt and evolve in a rapidly changing environment.

As a leader in the industry who can distil complexity and boil it down to clear actions, Kelly is frequently sought after to share her insights and expertise at industry events and conferences. 

“The views reflected in this podcast are the views of the author and do not necessarily reflect the views of KPMG Australia”.

In this episode, we sit down with Ana Forsyth, Associate Director from KPMG, as she discusses the fragmented state of Australia’s education system in relation to cyber education. Ana highlights the significant gaps between schools, vocational training, and higher education, stressing the need for cohesive national strategies and government accountability.

Ana also covers the critical role of teachers in cybersecurity education, the necessity of early cyber safety awareness, and the challenges parents face in navigating their children’s digital lives. She shares her views on current parenting trends in relation to children’s access to technology and the imperative for systemic educational reforms to build a resilient cybersecurity workforce in Australia.

For the past eight years, Ana has been a cyber professional consulting to Federal Government and Defence clients. Ana previously worked in event sales and hospitality management for almost a decade, but took the leap into cyber security and never looked back, successfully transferring her leadership and stakeholder engagement skills.

Ana completed a PhD in cyber security strategy, entitled ‘Educational pathways to national cyber resilience: the Australian story’ (ANU, 2020); the thesis focused on growing Australia’s future cyber workforce by enhancing its pipeline. She argued for strengthened higher and vocational cyber security education, but also for the need to drive more interest in STEM in primary/secondary school, bringing along not just the students, but also their teachers and carers. The research highlighted the need for support from government, academia and industry, seamlessly integrated at every level.

Ana also holds a Master of Arts in Strategy and Security (UNSW at ADFA, 2012), a Master of International Affairs (ANU, 2011), and a Bachelor of Business Administration and Hospitality Management (Northwood University and Hotel Institute Montreux, Switzerland, 2009). She grew up in the Middle East, and did most of her schooling in the French system.

[NB: if Ana could study forever, she would.]

Passionate about the human risk management facet of her industry, Ana is a firm believer in not only growing Australia’s future cyber workforce, but also uplifting the level of cyber skills across the board for the nation’s generations to come. She is dedicated to sparking conversation and raising awareness of the fact that future Australia needs support from us today to be the best that they can tomorrow – and as secure as possible.

“The views reflected in this podcast are the views of the author and do not necessarily reflect the views of the global EY organization or its member firms.”

In this episode, we sit down with John Hare, Associate Partner, Cyber Security from EY as he discusses the latest EY research on what those organisations that achieve the best security outcomes (“Secure Creators”) do differently to their less secure peers (“Prone Enterprises”).

We also explore how Secure Creators are responding to the recent surge in AI and GenAI use – both in the cyber function (AI for Cyber) and throughout the enterprise (Cyber for AI). John provides insights into how AI presents an opportunity for astute cyber teams to cement themselves as the true enablers of technology transformation, rather than “the department of no”.

John has 25 years of professional experience, spanning cybersecurity, diplomacy and law. John began his career as an M&A lawyer in London and Tokyo, before serving as a British diplomat for 9 years. John has spent the last decade working on cybersecurity, as a consultant, inside a major bank, and as a regional executive for a technology company.

John advises Australia’s leading financial services organisations on their cybersecurity strategies, adopting global better practice, and making cybersecurity a value creation driver.

Articles:

Cybersecurity an AI accelerator across the business | EY – Global Cyber and privacy leaders’ agenda | EY – Global

Listen to Decrypting The Future episodes here.

In this episode, we sit down with Skeeve Stevens, Director of Future Crime Agency, as he discusses the increasing desensitization to data breaches and the critical need for proactive government action in cybersecurity. Skeeve dives into the consequences of frequent cyber incidents, the potential for more advanced AI-powered attacks, and the urgent requirement for systemic changes to better manage personal data. We explore the inadequacies of current cybersecurity legislation, the challenges in educating the public about cyber risks, and the looming dangers posed by AI and home automation vulnerabilities. Skeeve also highlights the dire need for improved cybersecurity awareness and education to keep pace with technological advancements.

Skeeve Stevens is a leading authority in Australia and the APAC region on the Weaponisation of Technology. He specialises in identifying the risks and threats posed by emerging technologies and navigating the ever-evolving landscape of future technology-driven crime.

Future Crime transcends traditional concepts of cybercrime, representing a vast, complex, and rapidly expanding threat landscape with global reach and immediate, far-reaching consequences.

Skeeve provides expert advice to a diverse range of professionals, including government officials, politicians, legal advisors, lawyers, judges, law enforcement agencies, defence forces, the security sector, and businesses alike. His expertise has earned him hundreds of media appearances as a subject-matter expert, featuring on television, radio, newspapers, and podcasts across the globe.

Skeeve is, above all, a visionary Futurist, accomplished entrepreneur, highly sought-after keynote speaker, and renowned technology architect. As a trusted advisor to C-Level executives, he delivers exceptional insights across a broad spectrum of cutting-edge domains, including Future Crime, Artificial Intelligence, Futurism, Internet Architecture and Critical Infrastructure, the Internet of Things, and Automation. His expertise also spans Micro and Personal Robotics, as well as the sociology and psychology of human interaction with emerging technologies, offering a comprehensive perspective on how these innovations will shape society and our future.

 Skeeve is the author of the Threat Matrix, a restricted publication where he discusses potential risks using current, near Future, and emerging technologies and methodologies.

Skeeve is the founder of the Future Crime Agency (FCA) which specialises in the weaponisation of advanced and emerging technology and creating awareness for Law Enforcement, Military, First Responders, Private Security, and enterprises who work within those sectors.

Skeeve guest lectures on Cybersecurity, Technology Crime, Technology Terrorism, Infrastructure Protection, 1st Principal Thinking and Inversion Thinking at multiple academic institutions in departments such as Computer Science, Political Science, Psychology, National Security, and International Studies.

Skeeve is a former Director of the Internet Society of Australia and former chair of APNIC (Internet Governance) Policy Committee.  He has also represented Australia in Internet Governance issues and policy across the world.

In this episode, we sit down with Yuri Miloslavsky, CEO of Sharepass, as he discusses the risks associated with digital footprints in information sharing. Yuri delves into the importance of awareness about the vulnerabilities introduced by our online activities and the challenges of balancing security with user convenience. We explore the cybersecurity industry’s need to simplify security processes like multi-factor authentication (MFA) to enhance user adoption, and the pivotal role of education in improving security practices. Yuri also addresses corporate privacy policies, the trade-off between convenience and security, and the necessity for tighter compliance and regulation to ensure transparent data management.

Yuri Miloslavsky is an IT professional and entrepreneur with over 15 years of experience in the industry. As the co-founder and CEO of SharePass, a cutting-edge digital footprint management and privacy protection platform, Yuri is at the forefront of developing secure solutions for the modern digital communication landscape. His expertise extends to building and running a successful Managed Service Provider (MSP) specializing in IT consulting and cloud services.

In this episode, we sit down with Mary D’Angelo, Cyber Threat Intelligence Solutions Lead from Filigran, to explore cyber threat intelligence. Mary dives into the challenges of decision-making fatigue and discusses the essential role of integrating threat intelligence across organizational silos. She emphasizes the importance of a top-down cultural shift, advocating to demonstrate threat intelligence’s ROI to C-level executives. Highlighting real-world examples, such as the LockBit ransomware attacks on US hospitals, Mary reinforces the urgent need to democratize and streamline intelligence sharing. She also discusses the potential of AI in improving threat intelligence processes while noting the necessity for human oversight in decision-making.

Mary D’Angelo is a Dark Web Threat Advisor dedicated to empowering organizations with the knowledge and tools needed to effectively combat cyber threats. With a strong focus on threat intelligence, Mary guides businesses in leveraging advanced security strategies to thwart malicious actors.

Her commitment to raising awareness about cybersecurity risks is evident through her extensive work, including insightful interviews and thought-provoking blog posts aimed at educating the public.

Mary holds a Bachelor’s degree from the University of Washington. Actively engaged in the InfoSec community, Mary is a familiar face at industry events, contributing her expertise and staying abreast of emerging trends.

Beyond her professional endeavors, Mary is deeply invested in nurturing the next generation of cybersecurity professionals. She dedicates time to mentoring university students, sharing invaluable insights and guiding them toward successful careers in the field.

Mary’s influence extends beyond traditional realms, as she actively participates in esteemed think tanks such as the Dagstuhl Seminar 2024 and the Tortora Bradya Institute. Through collaborative efforts with leading experts, Mary continues to shape the discourse and advance cybersecurity strategies on a global scale.

In this bonus episode, KB is joined by Pravjit Tiwana, NetApp’s Senior Vice President & General Manager, Cloud Storage Business Unit, Jeff Baxter, Vice President, Product Marketing, and Krish Vitaldevara, Senior Vice President, Shared Platform on the ground at NetApp Insight 2024. Together, they dive into the critical topics like cloud services, unifying customer data, and the future of intelligent data infrastructure.

The discussion delves into the importance of building strong relationships with hyperscalers, the impact of AI on enterprises, and the challenges of data governance. Join us as we explore strategies for integrating AI with data, addressing customer needs, and effectively managing data security and insights.

Pravjit Tiwana, Senior Vice President & General Manager, Cloud Storage Business Unit

Pravjit Tiwana is NetApp’s GM and SVP of Cloud Storage. In his role, Pravjit is responsible for continuing the acceleration of our market leading first-party services in all three public clouds.

Pravjit brings over 25 years of experience to the role, many of those in the cloud space. Most recently, he served as the CEO of Gemini APAC, leading a 1000 person team across engineering, product, program management, sales and Business Development functions. Prior to that, he held a variety of general manager roles at Amazon/AWS, leading the Productivity Applications business and then their Edge & Network Services business. Pravjit lives in Bellevue, Washington with his wife and two teenage daughters (and his best friend, golden doodle Nemo). He is an avid golfer and marathon runner (when it isn’t raining in Seattle).

Jeff Baxter, Vice President, Product Marketing

Jeff Baxter is Vice President, Product Marketing at NetApp. In this role, Jeff leads the team responsible for core product & solutions marketing at NetApp. Previously, Jeff has held a variety of technical and strategy roles at NetApp, including serving Sr. Director of Product Management for ONTAP, Chief Evangelist for ONTAP, and Field Chief Technology Officer for the Americas at NetApp. Before joining NetApp, Jeff worked as an Associate at Booz Allen Hamilton advising multiple government clients and performing numerous in-depth storage assessments. Prior to Booz Allen, Jeff was Manager of Enterprise Systems at George Washington University, where he led a team of 15+ storage and systems administrators. He had responsibility for enterprise systems including collaboration and virtualization environments, as well as a complex storage system spanning multiple Data Centers. Jeff holds an MBA and BA from George Washington University. He is a NetApp Certified Data Management Administrator (NCDA). He has also has held VCP, SNIA, PMP, ITIL, and CISSP certifications.

Krish Vitaldevara, Senior Vice President, Shared Platform

Krish Vitaldevara is a passionate product leader and engineer with demonstrated success at building compelling multiyear strategies for large platform and product teams and delivering significant impact for large enterprises and billions of consumers. Krish is the SVP for Shared Platform at NetApp, responsible for unified storage platform, manageability platform, Customer eXperience Office (CXO), and Chief Design Office (CDO). His team enables delivery of various NetApp offerings across On-Premise, Hybrid Cloud, and Data Services. Prior to joining NetApp, Krish spent six+ years at Google in multiple roles, including leading product for Android and Plays Trust and Safety and Product for Google Maps. Krish joined Google after a long stint at Microsoft where he led product teams for O365 Foundations, Outlook.com, and Microsoft Consumer Trust and Safety teams. Early in his career, Krish worked at startups such as LoudCloud, started by Ben Horowitz and Marc Andreesen, and Brience, which enabled enterprises to customize customer experiences on mobile. Krish is also a proven innovator and hacker with more than 30 patents, primarily in distributed systems and spam-detection models, using graphs and networks for anomaly detection.

In this bonus episode, KB is joined by Haiyan Song, NetApp’s EVP & GM, CloudOps and Sandeep Singh, Senior Vice President and General Manager, Enterprise Storage on the ground at NetApp Insight 2024. Together, they dive into the critical topics of data management, cloud operations, and cybersecurity. This conversation explores the groundbreaking shifts in technology and strategy at NetApp, focusing on the integration of intelligent services in data infrastructure, the critical role of enterprise storage, and the future of AI.

Tune in to discover how NetApp is not only redefining the cloud operating model but also tackling the crucial challenges of data security and ransomware protection.

Haiyan Song, EVP & GM, CloudOps – NetApp

Haiyan Song is an experienced cloud, security, engineering, and database-management leader, with a track record of successfully integrating acquisitions and scaling them by connecting with and leveraging larger company ecosystem capabilities to accelerate success. Haiyan has held several leadership roles throughout her career tenure, including Splunk, HPE and Arcsight, all of which represent richly diverse technical experience. While her achievements are vast, one of the most notable during her time at Splunk includes her leadership in building and scaling a transformative business area that resulted in an increase in revenue of more than 15x over a seven-year period. Not only does she have a wide breadth of technical skills, but she has also worked in management roles within smaller companies, large-scale enterprises, and acquired businesses, and is experienced in change-readiness and organisational transformation.

Sandeep Singh, Senior Vice President and General Manager, Enterprise Storage – NetApp

Sandeep Singh is a driven, passionate, creative business leader with a proven track record of leading business and product strategy, building innovative products, managing high-performance organisations, and delivering business results at startups and Fortune 500 technology companies. Prior to joining NetApp, Sandeep spent four years at Hewlett Packard Enterprise (HPE) in multiple roles, including Vice President of Product Management for Data Infrastructure, Vice President of Marketing for HPE Storage, and CMO for Zerto, an HPE company. Sandeep joined HPE from Pure Storage, where he led product marketing for FlashArray, and helped the company scale from pre-IPO $100M run rate to a public company with greater than $1B in revenue. Prior to Pure, Sandeep led product management and strategy for 3PAR, an enterprise storage company, from pre-revenue to greater than $1B in revenue, including four-year tenure at HP post-3PAR acquisition. Sandeep resides in the Bay Area with his wife, two daughters, and their family dog. He has completed several marathons and ultra-marathons, including a 50-mile race, and his family has backpacked more 75 miles of the John Muir Trail.

In this bonus episode, KB is joined by Ashish Dhawan, NetApp’s Senior Vice President/General Manager & Chief Revenue Officer, Cloud Business Unit and Gagan Gulati, General Manager, Data Services, on the ground at NetApp Insight 2024. Together, they dive into the critical topics shaping the future of data and AI.

Join us as we explore the accelerating drive towards enterprise cloud adoption with Ashish and discover the obstacles enterprises face and the strategies necessary for successful cloud integration.

Later in the episode, we shift focus to data protection and governance with Gagan as we discuss the crucial role of understanding and safeguarding your data in today’s digital landscape.

Ashish Dhawan, SVP/GM and Chief Revenue Officer, Cloud Business Unit

Ashish Dhawan is NetApp’s Senior Vice President of Global Cloud Sales. Ashish Dhawan is a highly respected leader in the technology industry, currently serving as the Managing Director for Global Enterprise Workloads at Amazon Web Services (AWS). With a career spanning over two decades, he has been the architect of several successful businesses across the world.

Driving Enterprise Cloud Adoption at AWS: Since joining AWS in 2018, Dhawan has played a pivotal role in driving cloud adoption in enterprises. He began in Asia Pacific where he built the enterprise sales team and in 3 years helped the enterprise business grow 6X. He built and nurtured lasting C-level relationships, hired and mentored talented people, and was a change agent with a focus on strategic planning and disciplined execution. He then went on to lead the Global Enterprise Workloads team which focused on migrating and modernising key enterprise workloads like Microsoft and VMware. Under his leadership, the enterprise workloads business consistently grew >30% and he helped AWS achieve leadership in infrastructure and application modernization.

Early Career and Industry Expertise: Dhawan began his career in technology sales, quickly establishing himself as a top performer. He honed his skills at companies like Wipro, Microsoft and Juniper, where he built businesses from scratch, created strong teams and left a legacy of strong relationships with customers and partners. Prior to joining AWS, Ashish was VP Sales at Juniper in Asia Pacific, Japan and China based out of Singapore. This experience gave him invaluable insights into the needs and challenges of enterprise customers, which has proven crucial in his current role.

A Visionary Leader and Motivator: Dhawan is known for his strategic thinking, ability to build high-performing teams, and passion for innovation. He is an Amazon Bar Raiser and a highly respected leader within AWS, known for his motivational approach and commitment to employee development. He is also a frequent speaker at industry events, sharing his insights on the future of cloud computing and the impact it will have on businesses globally.

Gagan Gulati, General Manager, Data Services – NetApp

Gagan’s team focuses on building best-in-class data protection and governance products for NetApp enterprise and cloud storage. This portfolio includes backup, disaster recovery, ransomware protection, data classification and governance and CVO. Prior to NetApp, Gagan was Chief Product Officer at Behavox, a security and compliance company where he helped guide the vision, strategy, and roadmap for their product portfolio. Prior to that, Gagan was at Microsoft for 16 years. He was partner and director for PM for Data Protection and Governance products, where he took multiple products—including Azure RMS, Azure Information Protection, Microsoft Information Protection, and Azure Purview— from incubation to their incredible growth, usage, and success.

In this bonus episode, KB is on the go at Oracle CloudWorld in Las Vegas to find more about Oracle’s latest cloud technology, AI advancements, and innovative strategies. She sits down with Oracle executives Stephen Bovis, Stephanie Trunzo, and Pradeep Vincent as they explore Oracle’s shift from product-focused origins to a service-oriented approach, the vital role of AI in industry applications, and their efforts to bridge the gap between technological advancements and customer engagement.

Stephen Bovis, Regional Managing Director, Australia and New Zealand, Oracle

Stephen Bovis is responsible for Oracle’s overall business in Australia and New Zealand and ensuring it delivers on its values of trust, customer success, innovation, and equality for its customers, partners, and communities across the region.

Stephen has more than 30 years of experience in the IT industry across a wide range of roles, functions, and marketing segments. Most recently, he was at Hewlett Packard Enterprise, where he was vice president and managing director of the South Pacific region.

Prior to that, he was based in Singapore leading HP’s Enterprise Group sales account management team for Asia Pacific, whose portfolio included hardware, services, and software.

Stephanie Trunzo, Senior Vice President & General Manager, Oracle Industries

Expanding upon the success of launching Oracle Health as a complete portfolio that spans Oracle’s applications and infrastructure, Stephanie leads an industry-informed approach to Applied AI, Industry Clouds, and One Oracle model. In addition to Health and Life Sciences, Stephanie’s team drives Go To Market strategies for Financial Services, Retail, Hospitality, Restaurants/F&B, Energy & Water, Communications, Engineering & Construction, and Public Safety. Stephanie’s scope spans an $8B business with over 50k employees, including multiple acquisitions and organic growth.

Oracle’s Global Industries organisation solves some of industries’ toughest challenges with innovative yet practical applications built as best-practice examples of Oracle’s technology stack. By partnering with our clients, and hiring industry experts, we are building the most flexible and robust industry clouds in the market.

Pradeep Vincent, Senior Vice President & Chief Technical Architect, OCI, Oracle

Pradeep Vincent is the Chief Technical Architect and Senior Vice President at Oracle Cloud Infrastructure (OCI). He is a technology and software architect with more than 20 years of experience in tech companies such as Oracle, AWS, and IBM. He has a deep understanding of Cloud Infrastructure, Compute, Storage and Networking. Pradeep has been with Oracle for more than eight years leading a team of architects and software engineers building Oracle’s Public Cloud. He also leads OCI’s Architecture and Engineering Community initiatives.

Courtenay Farquharson is the founder and Chief Technology Officer of Backrightup and has over 20 years experience in the cybersecurity, backup and devops specifically. Backrightup was founded by Courtenay Farquharson in 2021 to address the data protection, compliance and business continuity challenges with storing your important code and associated metadata in the cloud (GitHub, Azure Devops and GitLab).  

In a world where unintended cloud data loss scenarios like UniSuper in May 2024 are a very real possibility, Courtenay is passionate about educating organizations in shift-left DevSecOps processes and integrating backup into the SDLC together with other Developer Security Platforms (SAST, ASPM etc)

In this bonus episode, KB is on the go at ISACA’s Beyond Tomorrow Conference in Melbourne. KB sits down with industry leaders like Erik Prusch, CEO of ISACA, as he discusses the organization’s expanding global influence and their pivotal role in career development for their 180,000 members. They also delve into the critical topics of AI’s transformative power across sectors, the intricacies of third-party risk management, and the indispensable importance of mastering basic cybersecurity practices. Erik is joined by fellow experts such as Jamie Norton, Chirag Joshi, Francine Hoo, Kate Raulings, Richard Magalad, Sam Mackenzie, and Wayne Rodriguez, who also bring their expertise and stories to the table, sharing the newest developments and challenges in cybersecurity and critical infrastructure.

Erik Prusch

Erik is an experienced CEO and board director for major tech companies. Prior to joining ISACA, he was most recently chief executive officer at Harland Clarke Holdings Corp., a provider of integrated payment solutions and integrated marketing services. He has also served as CEO for Outerwall, Lumension, NetMotion Wireless, Clearwire and Borland Software Corporation. Additionally, he has been a board member for RealNetworks, WASH, Calero Software and Keynote Systems. Previously in his career, Erik served as chief financial officer for a number of public companies, such as Identix and Borland, and for divisions of public companies, such as Gateway Computers and PepsiCo. He began his career at Deloitte & Touche (then Touche Ross). Erik holds a bachelor’s degree from Yale University and an MBA from NYU’s Stern School of Business.

Jamie Norton

Jamie Norton, CISA, CISM, CGEIT, CISSP, CIPM is a Partner at McGrathNicol, a specialist Advisory and Restructuring firm committed to helping businesses improve performance, manage risk, and achieve stability and growth. He also serves on the Advisory Board at Avertro, a cybersecurity startup enabling informed and defensible data-driven decisions about organisational cyber resilience and AI safety. He has over 25 years’ experience in managing security resilience for State and Federal Government agencies and commercial organisations. He is the former Chief Information Security Officer (CISO) at the Australian Taxation Office (ATO), one of Australia’s largest federal government agencies, where he led the security governance, risk, intelligence & operations, testing and forensics teams. He has chaired and supported several senior industry and interdepartmental committees on cyber strategy and resilience and the senior Australian representative at international government forums on cybercrime. He has previously held leadership roles at NEC, Tenable, Check Point, and the World Health Organization.

Jamie has been involved with ISACA for nearly 20 years, at the local chapter board, conference organiser and most recently with the CISM Certification Working Group. He holds degrees in accounting and information technology from the Australian National University and is an affiliate member of Chartered Accountants Australia and New Zealand. Jamie is a regular and accomplished industry speaker and media commentator on cyber security. He is based in Australia.

Chirag Joshi

Chirag Joshi, a multi-award winning cyber security executive, brings extensive experience in leading cyber security and risk management programs across various industries, including critical infrastructure sectors such as financial services and energy. His expertise in both IT and OT environments, coupled with his experience in managing cyber security through mergers and acquisitions, makes him uniquely qualified to address the challenges of the SOCI Act. As the author of bestselling books on cyber security and a recognised thought leader, Chirag offers valuable insights into practical implementation strategies and behavioural aspects of security awareness. His role as Founder and CISO at 7 Rules Cyber, combined with his experience in leading multi-million-dollar cyber transformation initiatives, positions him to provide actionable advice on navigating the complex landscape of critical infrastructure protection, supply chain resilience, and cyber risk management in the context of the SOCI Act and beyond.

Francine Hoo

Francine is a Director with KPMG’s Data team focusing on building trusted data practices. She has helped build, assure and audit multiple frameworks including governance, data management, data analytics practices, privacy, risk and compliance. Having started in audit, she leverages her combined experience to help build evidenced based, human centric, ethical and trustworthy data practices. She’s helped teams build AI Assurance frameworks to ensure safer and reliable deployment of AI based outcomes. She passionately believes that humans are accountable for the right use of data and therefore the sufficient and appropriate risk management of data operations in all its forms – including AI and automation. The future of data driven outcomes including AI is dependent and strengthened by the partnership of a diversity of thinking, where humans collaborate with tech.

Kate Raulings

Kate didn’t start her career in cyber security. Computers and internet connected devices weren’t common at the time. She has a deep understanding of business imperatives developed over a decade’s experience in senior communications and innovation roles before focusing on IT strategy, governance and cyber security for the last 8 years. She regularly briefs senior executive, audit and risk committees and boards on privacy and cyber security matters and has supported numerous organisations through notifiable data breaches. Kate has a Masters in Marketing and an MBA from the University of Melbourne as well as CISM certification. She has won local and global recognition for her success in digital communication and was a finalist in the Women in ICT Awards in 2022 and 2023. She is a member of the Australian Women in Security Network and an ISACA member. Kate is the CISO at EPA Victoria.

Richard Magalad

Richard is a 30 year veteran of the ICT industry starting at the Commonwealth bank and was a 10-year IT director from 2010 at a mining company with gold and diamond projects in Australia, Laos and Canada. Current projects are systems integration for two of the large Telcos, several agencies in the Australian Federal Government. He is a hands-on tech with a philosophy to never separate Cyber Security from Information Technology, just as he was trained in highly secure arena in banking and government He consulted and trained cyber security in SE Asia to governments and critical infrastructure enterprises on missions for Dept of Foreign Affairs and Trade and with RMIT University, where he now lectures cyber security to professional students. He was an executive committee and secretary at the Australia Computer Society (Victoria) until 2022 and the current chairperson of Cloud Branch with the Australian Information Security Association.

Sam Mackenzie

Sam Mackenzie, is a Cybersecurity committee member with ACS Victoria Branch and brings 25 years of experience, where he speaks straightforward cybersecurity and technology with business leaders. Having worked with global brands overseas and household names in Australia, he’s known for creating high-performance teams across the sectors of health, telecoms, energy and more recently local government. His approach is characterised by structured thinking, simplifying complexity and developing culture as a catalyst for change.

Wayne Rodrigues

Wayne Rodrigues is currently a Security Architect at Insignia Financial and an active member of the cybersecurity community.

Having been involved with ISACA Melbourne in the very early stages of his career, he has remained an active member and volunteer for the past 12 years. He is also part of various other initiatives such as the Purple Team Australia mentoring program and the EC-Council Career mentoring program. Being a keen advocate for continuous learning and growth, he loves mentoring others in the industry. Wayne believes these initiatives an excellent opportunity to give back to the community and help mould the next generation of industry professionals.

In this bonus episode, KB is joined by Mignona Coté, NetApp’s Global Chief Security Officer, and Matt Watts, NetApp’s Chief Technology Evangelist, on the ground at NetApp Insight 2024. Together, they dive into the critical topics shaping the future of technology and business. Coté brings her three decades of cybersecurity experience to discuss autonomous anti-ransomware systems, highlighting both the emotional and technical challenges faced by IT professionals in securing data and ensuring business continuity. She also delves into the importance of backup testing and the regulatory landscape that drives preparedness across industries. Watts, on the other hand, sheds light on the evolving role of sustainability within tech enterprises, emphasizing concrete measures NetApp is taking to support environmental goals while addressing the challenges of data waste. The episode explores the intersection of cybersecurity, sustainability, and emerging technologies like AI, offering listeners valuable insights into managing data efficiently while staying ahead of disruptive trends.

Mignona Coté, Global Chief Security Officer – NetApp

Mignona Cote, SVP and chief security officer at NetApp, has become a world leader in multi-cloud security, building solutions in high-tech, healthcare, insurance, and large financial institutions. Under her leadership, her team has unified security accountability internally to protect NetApp as well as externally to protect customers ultimately by moving NetApp to a SuperCloud architecture, which combines edge computing, multi-cloud, and multi-location recourses to create a powerful computing environment. She holds a Bachelor of Science in Computer and Information Systems from Northwestern State University and a MBA from Louisiana State University.

Matt Watts, Chief Technology Evangelist – NetApp

As Chief Technology Evangelist, Matt Watts provides guidance on NetApp’s overall strategy and technology solutions to a wide base of customers and the global partner community. Matt is also part of the portfolio leadership team, providing advice and guidance on technology and transformation.

Matt is increasingly in demand as a keynote speaker, combining his knowledge of the IT industry with anecdotes and stories that bring technology to life with witty, easily understandable examples.

Prior to this role, Matt Project Managed a number of significant IT projects; managed System Engineers responsible for providing installation and onsite support; as well as overseeing IT outsourcing contracts. This experience has given him contact with all levels of Leadership, enabling him to understand, communicate with and support clients with their IT and transformation Strategies.

In this bonus episode, KB is on the go at the NetApp Insight 2024 Conference in the MGM Grand, Las Vegas. KB sits down with two remarkable leaders from NetApp—Kristen Verderame, Vice President of Global Government Relations, and Michelle Rudnicki, President of the U.S. Public Sector.

Kristen shares her expertise on the intricate landscape of government relations and public affairs, explaining how NetApp supports various government missions across the globe, from AI strategies to the U.S. Space Force. Later, Michelle delves into leadership in the U.S. public sector, highlighting the importance of data security and the role of NetApp’s intelligent data infrastructure in enhancing data governance.

Kristen Verderame, Vice President, Global Government Relations – NetApp

Based in Washington DC, Kristen currently serves as the Vice President of Global Government Relations for NetApp, a $20B market cap technology company based in San Jose, CA. In that role, Kristen represents the company in front of Congress and Executive Branch agencies as well as government bodies around the world to support NetApp’s policy positions and enhance business development opportunities for the company. Kristen has spent over twenty-five years working in government relations and public affairs, and has extensive experience in cyber security, telecommunications and technology, and designing and running international lobbying campaigns and programs to support business objectives.

Prior to joining NetApp, Kristen worked with a number of other Fortune 100 companies to build their Government Relations functions through her firm, Pondera International LLC, including BT (British Telecom) Americas, Booz Allen Hamilton, Mandiant and FireEye. As an attorney, Ms. Verderame also worked through her firm to provide outside general counsel and business consulting services to major corporates, startups and small businesses.

Before founding her own firm, Kristen spent over ten years in a variety of roles within BT (British Telecom) Group plc. Her most recent role was Vice President and General Counsel for the company’s US operations where she was a leading member of the management team that drove 150% revenue growth (to US$3B) and a quadrupling of the workforce, with the non-organic growth requiring numerous reviews with the Committee on Foreign Investment in the US (CFIUS) which she led. Also throughout her tenure, Kristen served as the head of BT’s lobbying and government affairs office in Washington, D.C. in which she was the senior advocate for the company’s interests in front of U.S. Government agencies and Washington-based policymakers and led the company’s international trade policy efforts.

Kristen holds several advisory roles outside of NetApp. She currently serves as an officer on the IT Sector Coordinating Council at the Cybersecurity and Infrastructure Security Agency (CISA) at the Department of Homeland Security, having served on its Executive Committee for the last several years, and serves on the National Risk Management ICT Supply Chain Task Force. She also currently serves on the board of TPG Corporation Ltd. (Australia) as its Security Director responsible for ensuring compliance with US Government national security requirements. Over the years she has been actively involved in the network of British-American organisations in the US and UK, serving as board member, Vice President and general counsel of the British American Business Council, the international umbrella organisation that represents over 2,500 British and American businesses across 25 chapters in the US and the UK, and also serving as President of the Washington, D.C. chapter. Kristen has also served as the General Counsel to the Transatlantic Business Council, as the CEO of the European-American Business Council, and as a US Non-Executive Director for UK Trade & Investment.

Kristen received her Juris Doctor from the University of Michigan Law School, and her BA degree from Albion College, Summa Cum Laude, Phi Beta Kappa, with Honors. Kristen has also completed post-JD course work at the Georgetown University Law Center. Kristen holds a Top-Secret security clearance. She has two young-adult children, and in her spare time teaches yoga and races in duathlons.

Michelle Rudnicki, President, US Public Sector – NetApp

Michelle Rudnicki serves as Vice President of NetApp’s U.S. Public Sector business where she focuses on supporting government’s important and complex missions. She is passionate about and dedicated to helping public sector clients find technology solutions to manage their data most effectively and migrate to the cloud in this era of distributed, dynamic, and diverse data. She is responsible for leading the team to achieve strategic, financial, operational, and business objectives as they relate to NetApp’s public sector customers and channels.

Prior to NetApp, Michelle served as the vice president of Public Sector at Virtustream. Before that, she enjoyed a long tenure at IBM in leadership roles – including VP of Federal Systems – that spanned decades working with public sector clients to transform the way they interacted with their clients, citizens, and patients, progressing their digital services through the use of technology such as analytics, cognitive computing, mobile, and cloud.

In this episode, we sit down with Will Glazier, Head of the Cequence Prime Threat Research Team from Cequence Security, as he discusses the intricate landscape of API security in 2024. Will delves into the essential intertwining of API security and bot management, emphasizing why these cannot be handled independently. The conversation covers the diverse nature of API security issues, from inventory and compliance to active threat protection, and the industry’s shift towards consolidated security tools. Will also highlights the often-overlooked but critical importance of API security, compared to more tangible threats like business email compromise, and stresses the necessity of integrating security within CI/CD pipelines to mitigate risks.

William Glazier  is Head of Cequence Security’s new Cequence Prime Threat Research Team, whose mission is to help the security industry better understand how cybercriminals execute automated, malicious bot attacks against web, mobile, and API-based applications. As Head of CQ Research, Will focuses on the rapidly escalating problems of account takeover, fake account creation and content scraping at scale. He has an extensive background in fraud and abuse prevention, as well as building threat intelligence systems and databases. He has also extensively studied the shared attacker infrastructure and network fingerprints of tools used by cybercriminals to carry out these attacks, and has presented research at various security conferences such as BotConf, Hack.lu and GreHack.

In this bonus episode, we’re joined by Claudionor Coelho, Chief AI Officer, and Deepen Desai, Chief Security Officer & Head of Security Research at Zscaler as they share the latest in zero trust networking and AI security to protect and enable organizations. Claudionor discusses the societal implications of AI, the fears of obsolescence, and the generational changes in communication, providing a comprehensive look at the future of AI in both the digital and human landscapes. Deepen highlights the incredible potential of AI in transforming cybersecurity through initiatives like Zscaler’s “copilot” technology and the use of predictive models to foresee and mitigate breaches and the pivotal shift from reactive to proactive cybersecurity measures, underscoring the necessity of a zero trust architecture to minimize breach impacts.

Claudionor Coelho, Chief AI Officer, Zscaler

Claudionor Coelho brings a wealth of expertise to help Zscaler deliver a competitive technology advantage through the development of AI and ML innovations. Prior to joining Zscaler, Coelho served as the Chief AI Officer and SVP of Engineering at Advantest, where he spearheaded the development of a Zero Trust private cloud solution tailored for the semiconductor manufacturing market. Before Advantest, Coelho was the VP/Fellow of AI and the Head of AI Labs at Palo Alto Networks where he led the charge in AI, AIOps and Neuro-symbolic AI, an advanced form of AI that enables reasoning, learning, and cognitive modeling, to help revolutionize time series analysis tools on a massive scale. Coelho’s career also includes vital roles in ML and Deep Learning at Google, where he developed a state-of-the-art Deep Learning technology designed for automatic quantization and model compression which played a pivotal function in the search for subatomic particles at CERN..

Deepen Desai, Chief Security Officer & Head of Security Research, Zscaler

As Chief Security Officer & Head of Security Research at Zscaler, Deepen Desai is responsible for running the global security research operations as well as working with the product group to ensure that the Zscaler platform and services are secure. Deepen has been actively involved in the field of cybersecurity for the past 15 years. Prior to joining Zscaler, he held a security leadership role at Dell SonicWALL.

In this episode of KBKast, we’re joined by Jagdish Mahapatra, Chief Revenue Officer of ColorTokens, as he discusses the imperative of achieving digital resilience against cyber attacks. Jag delves into the critical role of the right partners in business digital security, the importance of microsegmentation in preventing lateral movement within networks, and why businesses should focus on breach containment rather than just prevention. He also sheds light on the importance of maintaining business continuity through digital resiliency, the need for ongoing support from vendors, and how businesses can better prepare for inevitable cyber breaches.

Jagdish Mahapatra is the Chief Revenue Officer of ColorTokens, a leader in Cybersecurity  industry in helping organisations “ Be Breach Ready”. He is responsible for the Global Go to  Market strategy of ColorTokens. 

Prior to joining ColorTokens Jagdish Mahapatra was the Vice President for CrowdStrike for  Asia Region which included South East Asia, North Asia and South Asia. His key responsibilities  included Building a Strong Business for Asia Region with the focus on providing next Gen  Cybersecurity solutions to Enterprise customer and Govt. and build Strategic Alliances for  CrowdStrike. Aside from growing business in hypergrowth mode which made Asia one of the  fastest growing regions in the world for CrowdStrike, he topk a lot of pride in incubating a 

culture of a highly engaged team with CrowdStrike Singapore being amongst the Top 5 Workplaces of 2022 and CrowdStrike India in Top 10 Workplaces in 2023. ( GPTW). 

Jagdish has previously worked for Cisco and McAfee. In Cisco he built a Strong Enterprise  business of 250M USD when he took charge as the Managing Director for McAfee India.  Having built a successful business and culture in McAfee India, he went to run the Strategic  Alliances for APJ for McAfee before joining CrowdStrike. 

He was recognized as one of the Top 40 Executives in India Inc under 40 in 2011 by Business  World.  

He has delivered a TED talk for Star TV which was aired in Jan 2018 where he spoke about how  we should keep our kids safe in the online world. He has also spoken as TEDx speaker in Feb  2018 on Cybersecurity and impact of Digital footprints. 

In the formative part of his career, he was instrumental in creating the manufacturing off  shoring model in India which emerged as a significant game changing industry phenomenon  during his stint at Larsen and Toubro, a large Engineering Conglomerate in India.  

On the academic front, Jagdish is an Electrical Engineer with MBA in Marketing and Finance.  Jagdish loves to explore travel to experience cultures, food and local mythology and loves to  relate the stories to work. Born in the holy city of Puri, one of the 4 top pilgrimages of India,  he finds Indian mythology inspiring to fulfil todays’ life. He is an avid reader from fiction to  Business and Technology and loves to blog regularly on all topics on Social media. Right now,  his passion is to rekindle his music desires with Piano and Drums. 

In this bonus episode, we sit down with Kavitha Mariappan, Executive Vice President, Customer Experience & Transformation and Dhawal Sharma, Senior Vice President & General Manager as they share the latest in zero trust networking and AI security to protect and enable organizations. Kavitha provides insights into the rising use of AI in cybersecurity, both defensively and offensively, and the challenges organizations face transitioning to zero trust environments. Dhawal delves into the concept of adaptive access and its role in real-time anomaly detection and zero trust security models, emphasizing the need for geo-location aware policies and the integration of step-up authentication. They also explore the impacts of recent cyber incidents in the ANZ region, the significance of network segmentation, and the collaborative efforts with industry giants like Google and NVIDIA to enhance security capabilities through AI technologies.

Kavitha Mariappan, Executive Vice President, Customer Experience & Transformation, Zscaler

Kavitha Mariappan is a seasoned go-to-market executive with a penchant for rapidly translating technology into customer-centric value, mobilizing global teams and operations, and transforming them into high-growth businesses. Over her 20+ year tenure spanning enterprise software and service providers, she has held various high-impact roles spanning marketing, product management, and engineering at industry-leading companies including Databricks, Riverbed, Cisco, and Philips Electronics.

Prior to joining Zscaler, she served as CMO at Split Software, a venture-backed startup where she built the company’s go-to-market engine from the ground up and was instrumental in defining a new category for product decisions. Kavitha is responsible for driving global transformation and innovation across all facets of Zscaler’s business, customers, strategy, products, and operations, with a strong focus on customer value creation. Kavitha holds a Bachelor of Engineering in Communication Engineering from the Royal Melbourne Institute of Technology, Australia, and a Master of Science in Cybersecurity Risk and Strategy from New York University School of Law and Tandon School of Engineering.

Dhawal Sharma, Senior Vice President & General Manager, Product Management, Zscaler

Dhawal Sharma is Senior Vice President & General Manager of Product Management at Zscaler. He led all core product management from 2012 to 2018 and currently leads all emerging product and core platform responsibilities. His specialties are in cloud security, networking, data path, IoT, NFV, NPM, DLP, and compliance.

Prior to joining Zscaler, he has worked in product management, product marketing and head of sales roles in the space of security, networking, compliance and network management at large companies such as Cisco as well as in tech startups.

Dhawal has a technical MBA degree from Symbiosis Center for IT where he achieved the best academic performance with a specialization in Networking and IT Infrastructure and he also holds a Bachelors in Engineering degree specializing in Computer Science. Dhawal also holds multiple patents in the security space along with many technical certifications in the past.

In this episode, we sit down with Mahesh Thiagarajan, Executive Vice President at Oracle Cloud Infrastructure (OCI), as he discusses the evolving landscape of cloud security and cloud adoption. Mahesh delves into the shared responsibility model of cloud security, emphasizing the critical roles played by both customers and cloud providers in maintaining secure environments. He also discusses the various challenges developers face, the innovative solutions offered by Oracle Cloud to prevent misconfigurations, and the significant advantages Oracle gains from its later entry into the cloud market.

Oracle CloudWorld 2024 is happening on September 9 to 12, 2024. Learn more about the event here.

Mahesh Thiagarajan serves as the Executive Vice President at Oracle Cloud Infrastructure (OCI), overseeing the development of core infrastructure services that includes Hardware, Supply Chain, Datacenter, Compute, Networking, and Storage. His team is devoted to constructing a distributed cloud infrastructure that offers customers a comprehensive, high-performance cloud computing environment. The primary objective is to empower customers to innovate, scale efficiently, and manage costs effectively.

Mahesh was pivotal in the 2016 launch of Oracle Cloud Infrastructure, contributing to strategic planning and overseeing various product launches related to security, application development, computing, database, and big data services. He also played a crucial role in establishing partnerships with Microsoft and VMware.

In his prior role as EVP for Security & Developer Platform, Mahesh led a team in developing security and observability products, cloud security measures, privacy solutions, compliance features, and services tailored for cloud-native applications development.

Join KB as she sits down with Gabie Boko, Chief Marketing Officer of NetApp, who will give us an exclusive sneak peek into what you can expect from NetApp INSIGHTS 2024. Gabie explores topics such as sustainability, cloud technology, and how AI is revolutionizing the way businesses manage data. Gabie also highlights the exciting new announcements, partner collaborations, and customer success stories that will be showcased at the event.

Gabie Boko is a business trailblazer currently serving as Chief Marketing Officer (CMO) at NetApp. She draws on her deep experience as a business, marketing, and technology leader to help shape NetApp’s evolution as the industry leader in intelligent data infrastructure.

A 25-year veteran in the tech industry, Gabie is known for her work spearheading business transformations at high-impact companies such as HPE, SAP, Sage, and Cognos. Prior to becoming NetApp CMO in January 2023, Gabie led the company’s Portfolio Marketing organization.

As a visionary business leader, Gabie relentlessly prioritizes a customer-first mindset. Among traditional marketing practices, she applies distinct strategies that anticipate future trends and adeptly navigate uncharted territories. This is driven by her proven certitude that marketing is much more than promotion and branding, it is about driving high impact outcomes and thinking for the business and industry as a whole. Gabie is resolute in her commitment to revolutionize the face of marketing and amplify its influence on business growth, strategy and vision.

Having grown up in the beautiful state of Alaska, Gabie is a strong advocate for the protection of rural communities.

In this episode, Shannon Sedgwick, Partner – National Cybersecurity Practice from MinterEllison, comes back on the show to talk about cyber warfare and its potential to precede physical warfare, especially targeting critical infrastructure. He also shares his insights on the intersection of geopolitics, technology, and cybersecurity, exploring the potential for AI to exacerbate global divisions and influence economic landscapes. The conversation also dives into the impact of increasing cyber threats, the challenges of AI regulation, and Australia’s position in the international technology landscape.

After two decades of working globally, consulting on risk and cybersecurity, Shannon has keen insight into what makes an organisation both protected and resilient from cyber threats. Shannon’s focus is on cyber risk governance and providing strategic advice to executive leadership and boards. Shannon works with government and corporate clients to develop solutions to incorporate cyber risk into their strategies. Shannon helps clients meet risk-reduction and compliance objectives and advises on the implementation of new and evolving technologies by ensuring they are secure, fit-for-purpose, scalable, and continually driving efficiencies. By employing his unique blend of experience in finance and cybersecurity, he assists in uplifting internal due diligence capabilities, focused on reducing risks and increasing return on investment.

In this episode, we’re joined by Josh Goldfarb, Global Solutions Architect – Security at F5, as he delves into the challenges of getting buy-in for security initiatives from management and executives. Josh discusses the struggle of presenting informative metrics to decision-makers and the need to bridge the gap between security professionals and business leaders. He also talks about the importance of modernizing security guidance to addressing the visibility challenge in complex environments.

Josh (Twitter: @ananalytical) is Global Solutions Architect – Security, at F5. Previously, Josh served as VP, CTO – Emerging Technologies at FireEye and as Chief Security Officer for nPulse Technologies until its acquisition by FireEye. Prior to joining nPulse, Josh worked as an independent consultant, applying his analytical methodology to help enterprises build and enhance their network traffic analysis, security operations, and incident response capabilities to improve their information security postures. He has consulted and advised numerous clients in both the public and private sectors at strategic and tactical levels. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team (US-CERT) where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT. In addition to Josh’s blogging and public speaking appearances, he is also a regular contributor to DarkReading and SecurityWeek.

In this bonus episode, we dive into the world of tech leadership and the challenges and opportunities surrounding the adoption of generative AI, ethical considerations, and data security at TechLeaders 2024.

Chris Diffley from Optus, announces the launch of the Optus managed threat monitoring service powered by Devo Technology, emphasizing the use of AI and ML to automate threat monitoring and detection. Chris “Gonzo” Gondek from NetApp highlights the importance of data storage conversations, storage technology flexibility, and autonomous ransomware protection. Gavin Jones from Elastic addresses the evolving nature of technology and the lag in Australia’s adoption of generative AI, while Geoff Schomburgk emphasizes the importance of a positive approach to encourage MFA adoption.

Chris Diffley, Senior Director for Client Security, Enterprise and Business,Optus

Chris is an experienced Information Security Manager and Security Director with over 20 years of experience in Telecommunications, Security, Operations and Consulting. He’s lead teams across enterprise, midmarket and small businesses and has deep understanding of implementing and upholding a number of frameworks and standards across businesses.

Chris “Gonzo” Gondek, Solutions Engineer Manager, Australia & New Zealand, NetApp

Chris “Gonzo” Gondek is a technology evangelist who plays a crucial role in driving NetApp’s technical solutions specialists (TSS) to greater heights. As our TSS Leader, Chris and his team collaborate closely with our sales and channel business units to drive innovation, develop new opportunities, enhance our solution offerings, and ensure that our customers’ needs are not just met, but exceeded. Chris spent the past 4 years working in the NetApp Partner eco-system as a Technical Partner Manager, as well as spokesperson at our channel and alliance events. Prior to NetApp, Chris partnered with us at Commvault and worked as a solutions specialist at Symantec. With 25 years in the tech sector, Chris is a seasoned industry leader with a proven track record of delivering innovative solutions and driving customer success.

Gavin Jones, Area Vice President and Country Manager, Australia & New Zealand, Elastic

Gavin brings over two decades of enterprise software experience, with a track record of leadership in banking and financial services, telecommunications, and public sector verticals. Joining Elastic as an Area Vice President and Country Manager in Australia and New Zealand (ANZ), he assumes a pivotal role in overseeing ANZ market operations, driving business development, and shaping the company’s strategy. Prior to joining Elastic, Gavin served as Vice President of ANZ at Confluent, where he spearheaded their transition towards vision and value-based selling. His focus was on high-value and priority use cases for the clientele. Preceding this role, he held the position of Country Manager for Tableau Software ANZ for two and a half years. In this capacity, he played a key role in shaping the BI/analytics category as a leader and a subsidiary of salesforce.com. His responsibilities included developing and executing the ANZ go-to-market strategy, as well as navigating the integration with Salesforce. Gavin is motivated by his ambition to lead a dynamic and inspired team within an innovative, growth-oriented organisation. His expertise spans strategic account management, new business development, and the skillful negotiation of large-scale, complex deals and partnerships.

Geoff Schomburgk, Vice President, Asia Pacific and Japan (APJ), Yubico

At Yubico, Geoff is responsible for driving the Yubico business across the Asia Pacific and Japan (APJ) region, working with partners and enterprise customers to implement modern phishing-resistant authentication, helping make the internet safer for all.

Geoff brings a strong customer focus and a proven ability to implement complex technology solutions across various industries, including telecommunications, utility and transport sectors across Australia, Asia and Europe. Critical to the success of these projects is the definition and realisation of tangible business value, where the combination of Geoff’s business consulting approach and project delivery experience consistently delivers business value.

Geoff is an experienced senior executive with a background in engineering and strategy consulting and over 30 years of experience in the global information and communications technology (ICT) industry. Geoff has a Bachelor of Engineering (Honours) and an MBA. He is also a qualified Company Director (FAICD) with current Board and business mentor roles for several Not-for-profit (NFP) organisations.

In this episode, we welcome Jeetu Patel, Executive Vice President and Chief Product Officer at Cisco, to delve into the future of cybersecurity and its impact on cloud-based software. Jeetu shares his insights on the detrimental effects of monopolies in the industry and the complexities faced by Chief Information Security Officers (CISOs). He emphasizes the importance of resilience, updates, and collaboration in addressing security challenges and predicting exponential innovation.

Jeetu Patel is Cisco’s Executive Vice President and General Manager of Security and Collaboration. He leverages a diverse set of capabilities to lead the strategy and development for these businesses and also owns P&L responsibility for this multibillion-dollar portfolio. Jeetu combines a bold vision, steeped in product design and development expertise, operational rigor and innate market understanding to create high growth Software as a Service (SaaS) businesses.

A member of the Executive Leadership Team, Jeetu is helping to redefine Cisco’s SaaS business and strategy to further accelerate the company’s transformation and growth. His mission is to build world class, subscription-based products that solve Cisco customers’ biggest problems. His team is creating and designing meaningfully differentiated products that diverge in the way they’re conceived, built, priced, packaged and sold.

Prior to joining Cisco, Jeetu was the Chief Product Officer (CPO) and Chief Strategy Officer (CSO) at Box, a role he pioneered. He led the company’s product and platform strategy, setting the company’s long-term vision and roadmap for cloud content management in the enterprise. He transformed Box from a single product application to a multi-product platform used by 100K customers representing 69% of the Fortune 500. The discipline, quality standards, performance metrics, and stability Jeetu instilled fueled the platform’s growth – nearly quadrupling revenues to $700M+. Box’s growth scaled to reach over 60M users with over 50% of customers using multiple products. He also created the Box Platform business unit where he led product strategy, marketing and developer relations – driving products from incubation stage to mature offerings.

Before joining Box, Jeetu was General Manager and Chief Executive of EMC’s newly acquired Syncplicity business unit, a cloud service for Enterprise File Sync Sharing (EFSS) and collaboration. One of the first SaaS-based solutions offered by EMC, Jeetu spearheaded the company’s acquisition. He created a world class leadership team, secured some of the market’s largest customers and led the group to become one of the fastest growing EFSS companies in a highly competitive market. Other key roles at EMC included CMO for the Information Intelligence Group and Chief Strategy Officer, where he drove the organic and inorganic strategy for the division’s cloud and mobile growth.

Previously, Jeetu was President of Doculabs, a research and advisory firm co-owned by Forrester Research. The firm focused on collaboration and content management across a range of industries including financial services, insurance, energy, manufacturing and life sciences.

He currently serves on the boards of JLL, an American commercial real estate services company, and Equinix, the world’s digital infrastructure company.

Jeetu holds a B.S. in Information Decision Sciences from the University of Illinois, Chicago, and lives in the San Francisco Bay Area with his family.

In this episode, we’re joined by Wendy Thomas, CEO of Secureworks, as she talks about the pivotal importance of truth and consistency in executive and marketing communications, emphasizing the need for companies to demonstrate genuine change and sustained effort over time. She elaborates on the key elements of a sincere apology and recovery, pointing out the importance of understanding, action, and compensation to rebuild trust with customers. Wendy further emphasizes the economic lens through which trust and security should be viewed, underlining the interconnectedness and dependence on technology in daily life. Additionally, she addresses the harm of giving away personal data, the impact of data breaches, and the trade-off between security and convenience for businesses, ultimately calling for shared responsibility and collective investment in building trust and enhancing security.

As CEO, Wendy Thomas leads Secureworks to fulfill their purpose of securing human progress via innovative, battle-tested security solutions. She first joined Secureworks in 2008 leading Financial Planning & Analysis (FP&A), where she helped to execute strategic acquisitions that scaled the business and Secureworks’ IPO in 2016. As Strategy lead and Chief Product Officer, she developed the vision for Secureworks’ future, fueling the team that built and launched Secureworks® Taegis™. Prior to becoming CEO, Wendy served as President of Customer Success, where she drove a customer-centric approach to help organizations achieve better security outcomes. In this role, Wendy was recognized in the number one position in The Software Report’s “Top 25 Women Leaders in Cybersecurity of 2021.”

Wendy leverages over 25 years of experience in strategic and functional leadership roles, and has worked across multiple technology-driven companies such as FirstData, BellSouth, and Internap Network Services, Inc. Wendy is a graduate of the University of Virginia, with a double major in Economics and Foreign Affairs, and she holds an International MBA from the University of South Carolina School of Business.

Wendy currently serves on the Board at IonQ, an industry leader in quantum computing. Additionally, she serves as a Liaison for AFS Intercultural Programs, an international youth exchange organization, and is a member of The Executive Committee of the Metro Atlanta Chamber of Commerce. Wendy is an alumna of Leadership Midtown Atlanta, a program designed to propel established leaders to further serve their communities.

About Secureworks

Secureworks Taegis™, is a SaaS-based, open XDR platform built on 20+ years of real-world detection data, security operations expertise, and threat intelligence and research. Taegis is embedded in the security operations of thousands of organisations around the world including in Australia who use its advanced, AI-driven capabilities to detect advanced threats, streamline and collaborate on investigations, and automate the right actions.    Secureworks generated $85.7 million in revenue for Q1FY25, with revenue from its Taegis platform growing 10% year-over-year in the first quarter, to $69.1 million. Taegis adoption in Australia is accelerating. The company processes approximately five trillion cybersecurity-related events across its global customer base each week, giving Secureworks a rapidly growing and diverse security telemetry of more than 50 petabytes across endpoint, network, cloud, identity and other business systems.

In this episode of KBKast, Nathan Wenzler, Chief Security Strategist at Tenable, joins us once again to discuss the critical importance of ensuring the accuracy and legitimacy of data within back-end databases to provide reliable responses from AI tools. We explore the shift towards AI reliance and the associated concerns about data integrity. Nathan emphasizes the need for purpose-built AI tools to ensure data accuracy, especially within government organizations. Additionally, we uncover the potential for AI to automate low-level tasks and emphasize the value of AI as a skills augmentation rather than job replacement. We also address the challenges of balancing AI innovation with security concerns and the need for practical implementations of AI tools to mitigate risks.

Nathan Wenzler is the Chief Security Strategist at Tenable, the Exposure Management company. he has over two decades of experience designing, implementing and managing both technical and non-technical security solutions for IT and information security organizations. He has helped government agencies and Fortune 1000 companies alike build new information security programs from scratch, as well as improve and broaden existing programs with a focus on process, workflow, risk management and the personnel side of a successful security program.

As the Chief Security Strategist for Tenable, he brings his expertise in vulnerability management and Cyber Exposure to executives and security professionals around the globe in order to help them mature their security strategy, understand their cyber risk and measurably improve their overall security posture.

In this episode, Richard Seiersen, Chief Risk Technology Officer from Qualys, joins us to talk about the critical topic of third-party risks in business operations. Richard emphasizes the need for risk management professionals to measure and mitigate these risks, as well as understand the necessity of business resilience through risk transfer and capital reserves, particularly in the context of increasing third-party usage. He advocates for a shift in the security industry towards a more business-aligned approach, stressing the need for better measurement practices and the integration of concepts such as understanding the impact of breaches on customer attrition and brand trust.

Richard is focused on cybersecurity risk management – as a modern enterprise practice and leadership skill. His books, speaking, and work support security leaders who need to align security practice with business goals. That alignment is at the heart of cybersecurity risk management.

As the Chief Risk Technology Officer at Qualys, Richard helps customers and the broader security community measure, communicate, and eliminate risk. With over 10 years of experience as a CISO, he has led and supported security strategy, operations, and governance across various industries and orgs, including Twilio, GE, and LendingClub.

He is also a published author and a faculty member at IANS, where he share his insights and knowledge on security metrics and risk management. His books, “How To Measure Anything In Cybersecurity Risk” and “The Metrics Manifesto: Confronting Security With Data”, provide practical and innovative approaches to quantifying and reducing security risk.

In this episode, Sam Mackenzie, cybersecurity committee member from the Australian Computer Society, sheds light on the crucial aspects of protecting essential services from cyber threats. Offering valuable insights, Sam emphasizes the need for good practice, sharing learnings, threat intelligence, network segmentation, and clear communication of risk to address leadership challenges. Sam highlights the challenges and importance of protecting society from cyber-physical outcomes, the evolving threat landscape for professionals in critical infrastructure, and the significance of defending against social engineering attacks.

Sam speaks straightforward cybersecurity and technology with business leaders in critical infrastructure. With 25 years’ experience at international corporations and household names in Australia, he’s created and led high performance teams in health, telecoms, energy and more recently in local government, focusing on using structured thinking and making the complex simple.

Sam’s recent research project involves interviewing leaders of critical infrastructure in Australia to gain valuable industry insights. Sam also serves on the Cybersecurity Committee for the Australian Computer Society (ACS) and is building a new community of driven professionals, passionate about protecting critical infrastructure and keeping society safe.

In today’s episode, we’re joined by Matt Preswick, Principal Solutions Engineer from Wiz, in the company’s first podcast appearance, to talk about cloud security and the intersection of AI with security in organizations. Matt emphasizes the critical need for evaluating security risks and compliance states within cloud infrastructure, addressing the potential for false positives in identifying security vulnerabilities. He also sheds light on the challenges posed by cloud-native threats, urging organizations to integrate security into early-stage application and infrastructure design cycles for efficient prevention of incidents. Matt’s insights underscore the importance of collaboration between security and AI teams, aligning initiatives with organizational goals and customer needs.

Matt Preswick is the Principal Solutions Engineer from Wiz in APJ, with experience in network, email and cloud security at leading security vendors in EMEA and APAC. Before joining Wiz, he lead operations at a Sydney based network analytics startup before returning to Cloud security with Wiz.

Matt is passionate about developing scalable and actionable security practices within APJs largest organisations.

In this episode of KBKast, we welcome back Alex Tilley, Intelligence and Research Lead, APJ from Secureworks, to explore the often overlooked topic of digital estate planning. Alex shares personal experiences and highlights the challenges of accessing digital assets after a loved one’s passing. He dives into the complexities of managing deceased loved ones’ digital accounts, the importance of notarized copies of death certificates, and the challenges posed by 2-factor authentication and security practices. Alex also stresses the need for open discussions and better preparation for managing digital estates, especially in the context of an aging population, urging individuals to start the estate planning conversation and document important digital information for their loved ones.

With over 20 years of experience in computer security and cybercrime, Alex Tilley is a highly awarded cybercrime researcher. Beginning his career in the online casino industry on Australia’s Gold Coast, Alex went on to implement and administer many varieties of network security technologies within Australia’s banking industry. Alex was on the forefront of research and countermeasures when phishing and malware first began to attack banking platforms and customers. When he later became the Australian Federal Police’s senior cybercrime technical analyst, he combined his technical background with an analytical approach to discover “who” the cybercriminals were, why they were attacking specific targets, and what they were looking for. This included identifying exposing online child predators as well as cybercriminals.  During this time Alex become a key member of the operations team responsible for many high profile cases.

Alex is now head of Threat Intelligence and research for Asia Pacific Japan (APJ) for Secureworks a global IT security and research leading company. Where we uses his wealth of experience to help organisations at all levels from the board to operational techs understand the organisational and technical aspects of State-sponsored cyber attacks as well as cybercrime in all its forms.

Find more about Security2Cure here.

In this episode, Poornima DeBolle, Co-founder and Chief Product Officer of Menlo Security, joins us as we tackle the evolving landscape of web browser security. Poornima sheds light on the potential risks associated with trusting links from popular email and file hosting services, urging enterprises to reevaluate their security stack and adapt to the current technological landscape. She also emphasizes the need for organizations to manage browsers as applications and highlights the gap in control and understanding between endpoint security and network security.

Poornima DeBolle

Co-founder & Chief Product Officer
Official Member – Forbes Technology Council

Poornima co-founded Menlo Security, bringing years of product management experience to the table. Before Menlo, she was a product management executive at Juniper Networks, responsible for cloud security, security management, and security analytics. She joined Juniper via its acquisition of Altor Networks, where she was vice president of product management and business development. Prior to that, she was head of business development at Check Point in product management and engineering roles. Poormina holds an MSCS from Arizona State University.

• https://www.linkedin.com/in/poornima-debolle-b0428/
• https://www.menlosecurity.com/management/

Recent Accolades:

• Forbes: 50 Over 50: Entrepreneurs (2022)
• Inc.: 200 Female Founders (2023)

In this bonus episode, KB is on the go at the 2024 Oracle CloudWorld Tour in Singapore where she sits down for a quickfire interview with Oracle executives Ashish Ray (Vice President, Product Management) and Sunil Wahi (Vice President, Fusion Cloud Applications) to get their insights on Oracle’s solution to solve business challenges.

Ashish Ray, Vice President, Product Management

Ashish Ray is Vice President, Product Management within Oracle’s core database development organisation. His product responsibilities include Exadata, Zero Data Loss Recovery Appliance, Oracle Database’s High Availability Solutions (Maximum Availability Architecture), and all associated Platform as a Service (PaaS) Cloud Services.

His team is responsible for all technical product management and product strategy for Oracle’s mission-critical database technologies, including Exadata and Autonomous Database, across on-premises, public cloud, and cloud at customer. Team responsibilities include defining and driving product strategies, corralling requirements and framing roadmap based on market/business demands, articulating product positioning and value proposition, launching and evangelising products and cloud services that solve complex enterprise problems, building and managing cross-functional teams and strategic partnerships.

Sunil Wahi, Vice President, Fusion Cloud Applications

Sunil is a Vice President and Head of Solution Engineering at Oracle, where he leads the Cloud Solutions Innovation Portfolio for ERP, Supply Chain, CX, and Human Capital across Asia Pacific. He is also heading the Strategy and Execution of the Large Deals Program. He is a Chicago Booth MBA Graduate, a Certified Information Systems Auditor (CISA) with over 25 years of experience in enterprise software sales and consulting.

As part of the APAC Senior Leadership Team at Oracle heading Fusion Applications Large Deals Strategy and Execution, Sunil advises and executes the Go to Market Plans and Business Strategy for the Fusion Cloud Applications Business, driving revenue growth, customer satisfaction, and market share. He also leverages his industry expertise and business process re-engineering knowledge to help customers achieve excellence and embrace world-class solutions. He specialises in Finance Transformations, Supply Chain & Logistics Strategies. He has exposure and advisory work in entrepreneurial technology startup business plans, investment, and funding strategies.

In this bonus episode, KB is on the go at the 2024 Oracle CloudWorld Tour in Singapore where she sits down for a quickfire interview with Oracle executives Jae Evans (Global Chief Information Officer and Executive Vice President) and Chris Chelliah (Senior Vice President, Technology and Customer Strategy) to get their insights on Oracle’s solution to solve business challenges.

Chris Chelliah, Senior Vice President, Technology and Customer Strategy, Oracle JAPAC

Chris Chelliah is responsible for driving digital transformation for Oracle’s customers in the Japan and Asia Pacific region. He’s accountable for the organisation’s hypergrowth in cloud infrastructure and autonomous database. Chris leads cloud specialist sales teams, industry architects, and the Oracle Insight team to bring together the expertise needed to provide a collaborative, consultative approach to help customers achieve their objectives.

Chris has nearly 30 years of experience across a variety of portfolios in Asia Pacific, Europe, and North America. Previously at Oracle, he focused on customer success with consulting and implementation services in global projects in the telecommunications, financial services, and government sectors, implementing disruptive and innovative software solutions.

Chris holds a postgraduate degree in computer science and mathematics from the University of Western Australia. He’s a frequent industry speaker and contributes regularly to trade and industry journals and opinion pieces on applications for emerging technologies.

Jae Evans, Global Chief Information Officer and Executive Vice President, Oracle

Jae Evans is Oracle’s global chief information officer and executive vice president of Oracle Cloud Infrastructure (OCI) Platform Services. She’s responsible for accelerating Oracle IT’s cloud transformation across thousands of environments, and her team provides IT services to Oracle’s 170,000 employees and developers worldwide.

Jae also leads OCI’s platform services consisting of commercial systems including billing, subscription management, and cost management, as well as other core platforms such as console services and marketplace. In addition, her organisation is responsible for ensuring the highest level of security, compliance, operations and support for OCI.

She has more than 20 years of experience building and leading global teams and managing mission-critical production services across various industries, including ecommerce, enterprise cloud, online gaming, retail, and telecommunications. Jae is passionate about bringing diversity and inclusion (D&I) into the workplace. She’s the executive sponsor of D&I for OCI, a member of Oracle’s Executive D&I Council, and an active participant in and champion of various Oracle Professional Asian Leadership and Women in Tech events.

In today’s episode, we’re joined by with Luke Hargreaves, Founder & CEO of Aquainnis, as we discuss sustainability and its crucial role in modern businesses. He discusses the economic benefits of sustainability, including cost savings and improved brand awareness, as well as the introduction of legislation and shareholder accountability in reporting. We delve into the concept of greenwashing and the significance of education, emphasizing that sustainability is not just an environmental issue, but also an economic and social one.

A highly driven technical professional with 20+ years of experience in the IT industry. Luke believes in the limitless potential of technology to sustainably transform the lives of people, and the world as a whole. He derives genuine joy to be doing what he is doing, and brings this enthusiasm everywhere he goes..

In this episode, Christy Wyatt, President and CEO of Absolute Security, brings attention to the lack of maturity in the cybersecurity ecosystem compared to the regulatory environment. Her discussion delves into the disparity between the accountability on a Chief Security Officer (CSO) and a Chief Financial Officer (CFO), and the importance of responsible behavior, accountability, and conversations about risk tolerance and investments to mitigate risks in cybersecurity. Christy also emphasizes the need for continuous testing, measuring impact and probability, building roadmaps, aligning risk appetite, and maintaining resilience in the cybersecurity journey. She tackles the significance of cyber resilience in maintaining security posture and responding to incidents, along with the key steps involved.

Christy is President and CEO of Absolute, the only provider of self-healing, intelligent security solutions and the only endpoint provider embedded in over 600 million devices globally.

A Silicon Valley veteran, Christy has deep experience and expertise spanning cybersecurity, enterprise mobility, embedded platforms, IoT, enterprise software, and data science. Prior to Absolute, she served as the CEO of Dtex Systems and Chairman, President, and CEO of Good Technology (acquired by Blackberry). Christy has also held a variety of technology leadership roles at Citigroup, Motorola, Apple, Palm, and Sun Microsystems. She currently serves on the board of directors of LM Ericsson and Silicon Labs, and has previously served on the boards of Quotient Technologies, Good Technology, Dtex, Centrify, and the Linux Foundation.

Christy was recently recognized as CEO of the Year by Globe and Mail. She has also been awarded one of the Top 50 Women Leaders in SaaS in 2019, and has been named one of Inc. Magazine’s Top 50 Women Entrepreneurs of America, Information Security’s CEO of the Year, and a Fierce Wireless “Most Influential Women in Wireless.”

In this episode, we sit down with Naran McClung, Head of Azure, Macquarie Cloud Services from Macquarie Technology Group, as he shares invaluable insights into the world of Security Operations Centers (SOCs). Naran discusses the pros and cons of in house SOCs versus outsourcing, shedding light on the expectations businesses have for outsourced SOC services and the challenges of maintaining an in-house SOC. He emphasizes the importance of efficiency in building runbooks, standing up SOC operations, and the significance of minimal downtime. Stay tuned as Naran McClung provides a wealth of knowledge on managing 24/7 operations, structuring SLAs, and much more. So, let’s jump right into this fascinating discussion on SOC operations, security posture, and the evolving landscape of cybersecurity.

Naran McClung is an experienced IT professional and business leader, with an international career spanning over 20 years. He has defined and led significant technology transformation programmes within Finance and Media verticals, and has executed strategic engagements throughout the UK, Europe and the US.

Naran McClung runs the Azure business for Macquarie Cloud Services (MCS). The business was incepted in 2019 and publicly launched February of 2020 to coincide with the inking of a unique and strategic agreement with Microsoft.

MCS has consciously chosen to only work with the Azure Cloud Platform, believing in strength in depth and a truly committed Partnership with Microsoft. MCS is now the fastest growing Azure Managed Services business in Australia, and the only Azure Expert MSP to also be a Microsoft Intelligent Security Association (MISA) member.

In this episode, we sit down with Chris Hockings, CTO Security Asia Pacific, from IBM as he discusses IBM’s X-Force Threat Intelligence Index 2024. Chris delves into the shifting tactics of ransomware groups, the need for quick innovation in response to cyber threats, and the importance of mitigating vulnerabilities in critical infrastructure. We also discuss the rising use of valid accounts by cybercriminals, the challenges of implementing advanced detection and response mechanisms at scale, and the fundamental building blocks of cybersecurity. Join us as we uncover key insights from IBM’s X-Force Threat Intelligence Index 2024 and gain valuable knowledge on cybersecurity trends and strategies to address today’s biggest security challenges.

Chris Hockings is the CTO for IBM Security Asia Pacific.  He represents the IBM global security strategy and vision across the region and in doing so engages with leaders across government, industry, and partnerships. Chris has been a leader across all facets of software, including global research and development, support, service, and market engagement.

Read the IBM Security X-Force Threat Intelligence Index 2024.

In this episode, we’re joined by Thomas Fikentscher, Area Vice President ANZ from CyberArk, as we delve into the critical topic of effective communication in the context of government concerns and cybersecurity risks for businesses. With a focus on the evolving landscape of legislation and compliance, Thomas shares invaluable insights on the proactive strategies, challenges, and collaboration needed for organizations to navigate and implement robust security architectures and risk management programs. Join us as we explore the complexities, uncertainties, and promising developments in this crucial area of business operations.

Thomas Fikentscher is responsible for driving strong customer and partner engagement and expanding CyberArk’s emerging cloud business in the region.

Prior to joining CyberArk, Thomas was Chief Revenue Officer at JXT Global, and has more than 20 years’ experience in the IT industry, including significant stints at Oracle, Ingram Micro and Sun Microsystems. His extensive industry and leadership experience – particularly in the cloud domain – has been invaluable to CyberArk, helping grow demand for Identity Security solutions.

When it comes to cybersecurity, Thomas sees a significant opportunity to bridge the gap between technology jargon and business language. A big part of this is helping company leaders understand the importance of identity security to organisational risk management.

In this episode, Christina Arcane, Director from Inspire Cyber, sits down with us to discuss the crucial topic of cybersecurity awareness and training. She discusses the importance of aligning training with an organization’s brand and culture, distinguishing between cyber risk and awareness, and the challenges in effectively engaging employees in training. The conversation covers a wide range of issues, such as the need for comprehensive, personalized training, the impact of poorly executed online modules, and the critical role of engaging and effective delivery in cybersecurity training. Tune in to gain valuable insights into cybersecurity training strategies and the importance of driving behavioral change across organizations.

For her entire cyber security career Christina has been translating cyber security concepts and providing high quality awareness and training to all roles – from the company graduates right up to the board.

With a wide range of experiences across financial services and technology industries, working with startups, SMB’s and large multinational organisations, Christina has built a career on the intersection of cyber threats, risk and business objectives. In 2016 she co-founded cyber security SaaS startup BreachAware, leading its operations right through to acquisition in 2020. Recently she dived back into the world of entrepreneurship to reimagine security awareness offerings and provide her expertise through her new company, Inspire Cyber.

In this episode, we sat down with Dima Postnikov (Head of Identity Strategy and Architecture – ConnectID) as we explore the challenges and potential of digital identity technologies in Australia. From fraud prevention to data privacy, Dima discusses the complexities and opportunities in the evolving landscape of digital identities, shedding light on the importance of trust, security, and consumer education.

Dima is an identity industry leader 20+ years of experience who is influential in the advancement of digital identity ecosystems globally.

Dima has a passion for digital identity, open banking and trust ecosystem design, having spent the last 10+ years focused on architecture, design and implementation of the technology platforms that underpin online systems of Commonwealth Bank of Australia (CBA), Westpac and Australian Securities Exchange (ASX).

Dima has significant technical experience in developing customer identity solutions in the areas of identity proofing, authentication, authorisation, application and API security, Digital identity, Open Banking.

As an active member of standard and industry organisations globally, Dima has been heavily involved with OpenID Foundation, IDPro, Trust Over IP, FIDO, Kantara and Open Wallet Foundation and ISO.

In this episode, we’re joined by Aaron Bugal (Field Chief Technology Officer – APJ for Sophos) as he delves into the crucial yet often overlooked topic of burnout in the cybersecurity industry. We  explore how burnout and apathy can contribute to major breaches, stressing the need for organizations to support their cybersecurity professionals effectively. From the impact of the pandemic to the prevalence of lip service in the industry, Aaron shares insights on improving mental health support, fostering a positive cybersecurity culture, and the significance of addressing burnout for a more resilient defense against cyber threats.

With close to 18 years experience at Sophos, and over 20 years in the cybersecurity industry, Aaron Bugal has spent his time helping organisations throughout Asia Pacific and Japan effectively understand and deploy strong cybersecurity measures to keep their business safe.

As Field Chief Technology Officer for APJ, he is able to flawlessly articulate to business leaders, partners, and companies the ever evolving cybersecurity landscape and emerging cyber threats.

His humorous demeanour and witty analogies has shined in discussions with a range of media, conferences, and events, where he provides practical insights for both business and consumers audiences to take on board.

Read the report here.

In this episode, we sat down with Min Livanidis – Head of Digital Trust, Cyber, and Data Policy, AWS ANZ, as she provides insights into the intersection of AI, cybersecurity, and public policy, emphasizing their impact on society. From Australia’s cybersecurity strategy to responsible AI policies, we explore the collaborative nature of policy development, the role of diverse perspectives, and the potential for individuals to influence change.

Min Livanidis leads AWS public policy across some of Australia’s most pressing technology areas, including cybersecurity, artificial intelligence, and critical infrastructure. Min lead AWS’s collaboration with the government during the development of the 2023-2030 Cybersecurity Strategy. She is currently leading AWS’s engagement around safe and responsible AI in Australia, working closely with Minister Ed Husic and industry to develop best practice regulation frameworks. In 2023 she appeared at the Senate Inquiry for the use of Generative AI in the Australia Education Sector. Min regularly engages with the most senior level of government on key policy areas including AI, cybersecurity, privacy, data and digitization strategy, electronic surveillance, critical and emerging technology, and critical infrastructure.

Outside AWS, she is Non-Executive Director of the Oceania Cyber Security Centre, a registered charity developed in partnership with the eight Victorian universities, the Victorian Government, and Oxford University to deliver cyber maturity assessments for Pacific Island nations; Non-Executive Director of the Australian Cyber Collaboration Centre, established by the South Australian Government with a focus on domestic cyber capacity building and home to key partnerships with the MITRE Corporation and NATO; and an Industry Professor with the School of Information Technology at Deakin University, affiliated with the Centre for Cyber Resilience and Trust (CREST).

In this episode, we are joined by Andre Durand, CEO and founder of Ping Identity, as we explore the need to shift from “trust” to “verify” in today’s interconnected digital world. Andre dives into the complexities and challenges of this shift, discussing the implications for security, user experience, and the ongoing battle against fraud. From balancing security with user convenience to the importance of quantifying security investments, this episode provides valuable insights into the evolving landscape of digital verification.

Founded in 2002, Ping Identity has become a leading provider of enterprise identity security, serving more than half of the Fortune 100 and protecting more than 3 billion identities worldwide. In 2016, Ping Identity was acquired by Vista Equity Partners and in 2019, became the first Vista company to IPO on the New York Stock Exchange, trading under the symbol PING. In 2022, Thoma Bravo acquired PING and took the company private for US$2.8B. Prior to Ping Identity, Durand founded Jabber to commercialise the Jabber open source instant messaging platform which was acquired by Cisco in 2008.

Durand serves on the board of Jamf (NASDAQ: JAMF) and in his spare time focuses on causes related to children in the foster care system, building great culture and creating opportunities for entrepreneurs. Durand holds a BA in Biology and Economics from the University of California at Santa Barbara and lives in Denver, Colorado, with his wife Kim and two daughters.

In this episode, we’re joined by Jason Baden (Regional Vice President – F5) as he shares his insights on the evolving landscape of cybersecurity,  simplifying API security, and the critical need for education around security spending. Jason also discusses the challenges and opportunities in API security, the impact of security spending on businesses, and the growing collaboration between developers and security professionals.

Jason has almost 20 years’ experience as a senior executive in the IT and telecommunications industry. Prior to joining F5, he was Country Manager at Ruckus Networks and was responsible for leading the ANZ team strategy, as well as the smooth integration of ARRIS following its acquisition of Ruckus Networks. He has also previously held roles at Juniper Networks, AXS-One, Airwide Solutions, and Optus.

In this bonus episode, KB is on the go at the 2024 AWS Summit Sydney where she sits down for a quickfire interview with AWS experts Min Livanidis (Head of Digital Trust, Cyber, and Data Policy) and Phil Rodrigues (Global Head of Customer Security Outcomes, Global Services Security) to get their insights on hot topics in the media and cyber space.

In this episode, we’re joined by Bob Huber (Chief Security Officer and Head of Research – Tenable) as he delves into the pressing issue of misinformation on social media. From the impact on critical situations like elections and natural disasters to the proliferation of deepfake technology, we explored the difficulty of discerning authentic content. Bob shared insights on the challenges of identifying and combating misinformation, emphasizing the need for international norms and proactive measures.

Robert Huber, Tenable’s chief security officer, head of research and president of Tenable Public Sector, LLC, oversees the company’s global security and research teams, working cross-functionally to reduce risk to the organization, its customers and the broader industry. He has more than 25 years of cyber security experience across the financial, defense, critical infrastructure and technology sectors. Prior to joining Tenable, Robert was a chief security and strategy officer at Eastwind Networks. He was previously co-founder and president of Critical Intelligence, an OT threat intelligence and solutions provider, which cyber threat intelligence leader iSIGHT Partners acquired in 2015. He also served as a member of the Lockheed Martin CIRT, an OT security researcher at Idaho National Laboratory and was a chief security architect for JP Morgan Chase. Robert is a board member and advisor to several security startups and served in the U.S. Air Force and Air National Guard for more than 22 years. Before retiring in 2021, he provided offensive and defensive cyber capabilities supporting the National Security Agency (NSA), United States Cyber Command and state missions.

Mario has 20 years of experience as a security professional working across the retail, healthcare, and financial sectors. He has built and managed security teams, developed and implemented security programs, and managed PCI and HIPAA compliance initiatives for medium and large organizations. He also currently serves as both an advisor and investor at Silicon Valley CISO Investments (SVCI) and SYN Ventures.

Mandy Andress is currently the CISO of Elastic and has a long career focused on information risk and security. Prior to Elastic, Mandy led the information security function at MassMutual and established and built information security programs at TiVo, Evant, and Privada. She worked as a security consultant with Ernst & Young and Deloitte & Touche, focusing on energy, financial services, and Internet technology clients with global operations. She also founded an information security consulting company with clients ranging from Fortune 100 companies to start up organizations.

She is a published author, with her book Surviving Security having two editions and used at multiple universities around the world as the textbook for foundation information security courses. Mandy also tested and reviewed information security products for multiple publications as well as serving as the author for the weekly InfoWorld security column. She has been a sought-after expert in the field, speaking at signature security conferences such as BlackHat and Networld+Interop. In addition, she has taught a graduate level Information Risk Management course for UMass Amherst in the College of Information and Computer Sciences.

Mandy has a JD from Western New England University, a Master’s in Management Information Systems from Texas A&M University, and a B.B.A in Accounting from Texas A&M University. Mandy is a CISSP, CPA, and member of the Texas Bar.

In this episode, we are joined by Mark Anderson (National Security Officer – Microsoft ANZ) as we discuss insights from the Microsoft Digital Defense Report, shedding light on the rise of cybercrime, the surge in sophisticated attacks, and the pressing need for enhanced cybersecurity capabilities across all business sizes.

From open source vulnerabilities to the significance of software bill of materials (SBOMs), this episode offers practical examples and advice on building robust cyber defenses. Join us as we navigate through the complexities of cybersecurity, uncovering how technology intersects with societal and business issues, and exploring the compelling data shaping the future of cybersecurity.

Mark has over 28 years’ experience in the IT industry with 18 of those at Microsoft in various roles across the globe. As the National Security Officer for Microsoft Australia & New Zealand, Mark is responsible for working with customers, partners, governments, and industry regulators to ensure that the Microsoft platforms are not only understood by policymakers but also adhere to their security, compliance and risk management requirements. In addition, Mark is accountable for the PROTECTED level assessment of Azure,
Office 365, and Dynamics. Mark holds a Master of Cyber Security degree with high distinction from Edith Cowan University and is a Visiting Associate Professor at Macquarie University

Take a look at the MDDR Report here.

In this episode, we are joined by Chris Cochran (Co-Founder and Chief Creative Officer – Hacker Valley Media), as we delve into the world of content creation in cybersecurity. We explore the power of authentic storytelling and creativity in content, and its potential to shape the cybersecurity industry.

Chris shares personal anecdotes, underlining the importance of diversity and inclusivity in this field, and advocates for a shift towards a more positive mindset.

Chris Cochran is Hacker Valley Media’s co-founder/ Chief Creative Officer and the Advisory Chief Information Security Officer/ Chief Evangelist for Huntress Labs. Chris also serves on the Board of Governors for the Podcast Academy. He is a cybersecurity leader turned award-winning content creator and speaker, earning two Anthem Awards and one Webby nomination. Chris started his career in technology during his active duty service in the US Marine Corps as an intelligence analyst at the National Security Agency.

Chris spent over a decade leading advanced cybersecurity and intelligence missions at organizations such as the US House of Representatives, US Cyber Command, Mandiant, Booz Allen Hamilton, United Technologies, and Netflix. His passion is finding and amplifying human stories in cybersecurity and technology to inspire and empower our community.

In this episode, we are joined by Corien Vermaak  (Head of Cybersecurity – Cisco ANZ) shares insights on the evolving role of AI in cybersecurity. From early threat detection to ethical considerations, we explore the potential and challenges of AI in safeguarding digital environments. Corien discusses how AI can proactively identify anomalies and augment human skills, enhancing security measures and response times. Join us as we delve into the integration of AI in cybersecurity and the impact on job roles, and a thought-provoking discussion on the ethical implications of AI decision-making.

Corien Vermaak started her career as a technology law specialist within the telecommunication space and soon fell in love with data privacy and the legal structures governing cybercrime. In her career,  Corien specialised in cybercrime legislation and data privacy while representing large multinationals on these matters.

She holds a master’s degree in law specialising in cybercrime and data privacy. She has been involved in the writing of legislation in this regard as well as consulting to Africa Union and Interpol on issues relating to cybercrimes and privacy.

Corien is a Qualified Digital Forensic Auditor, Lead ISO 27001 auditor and C|CISO. Corien has been a CISO Advisor for the Cisco Security Centre of Excellence in the Asia Pacific, Japan and China region where she has led market.

KB has previously interviewed Corien, but asked for a more in-depth interview. This is likely to be followed with an in-depth interview with Jeetu Patel, Global Exec for Cybersecurity at Cisco.

In this episode, we are joined by with Alex Trafton (Managing Director of National Security, Trade, & Technology – Ankura) to unravel the complex dynamics of cybersecurity, government regulations, and the landscape of defense and technology at a global scale. We explore the challenges and opportunities for small companies, the impact of strategic cooperation between democratic nations, and the crucial role of integrity and innovation in the industry. Join us for a candid conversation that sheds light on the future of cybersecurity and the call for collaboration between nations.

Alex Trafton is a Managing Director in the National Security, Trade, & Technology practice at Ankura Consulting Group, based in Los Angeles, CA, USA. He has over 15 years of experience in finance, risk management, and cybersecurity. Alex leads the NSTT cybersecurity function and serves as a subject matter expert in cybersecurity program design, implementation, and assessment with a focus in foreign investment control and oversight (CFIUS), Defense Industrial Base (DIB) cybersecurity requirements, and international trade control compliance program support (ITAR/EAR). Alex is focused on working with multi-national defense contractors to help them meet cybersecurity and export control requirements before, during, and after mergers and acquisitions.

In this episode, we are joined by David Batch (Executive Director, Privacy Advisory – CyberCX) as we delve into the principles of Privacy by Design and the need for organizations to prioritise privacy as a pillar of trust. From data retention challenges to the impact of data erasure on regulated industries, we navigate through the complexities of privacy management. Join us as we explore the potential catalysts for change, the role of regulatory frameworks, and the innovative solutions for empowering individuals to take control of their privacy.

David leads the Privacy Advisory Practice at CyberCX and brings to the role over 25 years of government and industry experience.  Prior to entering the consulting sector, David was responsible for privacy risk management at State Street Corporation across APAC, built and led the CBA’s first dedicated privacy team, led the privacy function at NEHTA (now the ADHA) and was the online safety, security and privacy lead for https://MySpace.com in Australia/NZ. Prior to his privacy focused roles, David was a Federal Agent with the Australian Federal Police and held a number of investigative, legal policy and training roles during his 9 year tenure with the agency.​

In addition to these roles, David was the creator of the annual consumer and organisation privacy research, the Deloitte Australian Privacy Index and its principal author for four editions. David also launched the annual Australian Privacy by Design Research and Awards in 2022, for which he and the team were awarded by the Australian Information Security Association as ‘Cybersecurity Researcher of the Year’ in 2022.

In this episode, we are joined by Prof. Dali Kaafar (Executive Director –  Macquarie University Cyber Security Hub, CEO and Founder of APATE.AI) as he discusses the innovative use of conversational AI in combating phone scams. From the manipulation and trust-building tactics employed by scammers to the pressing need for proactive defense measures, Dali sheds light on disrupting scammers’ profits and protecting potential victims. This captivating conversation explores the intersection of technology, psychology, and security, offering valuable perspectives on safeguarding against phone scams in today’s digital landscape.

Dali Kaafar is a Professor at the Faculty of Science and Engineering and serves as the Executive Director of [The Macquarie University Cyber Security Hub]. In addition to his role as the director of the Data Security and Privacy R&D Program, he oversees the Cyber Range Training Centre (CRTC) and Cyber Security Curriculum at the Institute of Applied Technology-Digital.

Leading a team of collaborators, Professor Kaafar is actively engaged in extensive Research and Development activities within the field of Cyber Security in Emerging Technologies, with a vision to enable Explicit Trust in the Digital Economy. His primary research interests revolve around Data Security and Privacy, specifically focusing on Privacy-Preserving (or Enhancing) technologies, Information Security for Web and Mobile applications, (Provably) private data sharing, and Trustworthy Secure and Private Machine learning techniques.

Before joining Macquarie University, Professor Kaafar served as the group leader and founder of the Information Security and Privacy group at CSIRO Data61. He was previously a principal researcher at National ICT Australia (NICTA) and held a permanent researcher position at the Privatics team at INRIA in France.

In this episode, we are joined by Mark McClain (CEO and Founder of SailPoint), as we dive deep into the pivotal role of identity as a fundamental control point and lens for understanding security in organizations. Mark emphasises that while traditional security measures such as firewalls and network security remain vital, identity security is equally critical for protecting data and driving business momentum. Moreover, the conversation delves into the challenges of balancing convenience and security, particularly with the rise of AI and machine learning in security measures. Mark highlights the limitations of current security tools in being “identity blind,” stressing the need for better tooling and processes to identify and respond to security threats more efficiently.

In his role as CEO and Founder of SailPoint, Mark brings almost 35 years of experience in technology, with over 20 years as a founder and leader of innovative identity management companies. Under Mark’s direction, the company has grown into a publicly recognized leader in its market. Mark directs and drives the overall vision and strategy for SailPoint, which is underpinned by his commitment and passion for building top-performing teams, creating a collaborative and innovative work environment, and focusing continuously on the needs of customers.

Teaming is a concept that Mark promotes throughout the company: teaming with forward-thinking customers to understand their needs, with partners to ensure customer success, and ultimately within SailPoint to develop innovative, market-leading solutions. Mark is passionate about maintaining the spirit of teamwork, even as SailPoint grows its employee base and its global presence to offices around the world.

Prior to SailPoint, he co-founded Waveset Technologies, which was ultimately acquired by Sun Microsystems. Mark’s career also includes diverse experience in international sales and marketing with Hewlett-Packard and IBM/Tivoli Systems.

In this episode, we are joined by Dean Houari from Akamai, as we dive deep into the continuously evolving landscape of API security. The discussion delves into the growing concern of API attacks and the increasing recognition of the need for “security by design” at the board level. Dean shares insights on the shifting nature of application architecture, the vulnerabilities of APIs, and the impact of cloud-native and modern applications on security measures. The conversation emphasizes the need for a comprehensive approach to securing API attack surfaces and preparing for potential breaches. Tune in as Dean provides practical advice and expert perspectives on navigating the complexities of API security.

Dean Houari is the Director of Security Technology and Strategy for Akamai’s Asia-Pacific and Japan region. He is a patent awarded technologist with over two decades of experiences in various engineering and architecture leadership roles.

 At Akamai, Dean is responsible for product and go-to-market strategy for Akamai’s security portfolio, which includes both established and emerging areas in security. His work focuses on encouraging customers to a strategic view of their security programs, and articulating key security design principles that position customers for long-term success in their security strategy.

Prior to Akamai, Dean led the architecture and development of DevSecOps, cloud and cyber security initiatives and innovations. He holds an inventor patent with Cisco Systems, as well as certifications from CCIE, Terraform, and AWS. He is also an avid powerlifter who has lifted a personal best of 650kg.

Dean attended Carnegie Mellon University and is currently based in Tokyo, Japan. 

In this episode, we are joined by Mary Carmichael (Vice President – ISACA Vancouver) as we dive deep into the Generative AI 2023: An ISACA Pulse Poll. Mary discusses addressing vulnerabilities and biases in AI, the societal impact on jobs and the need for upskilling, and the importance of responsible AI deployment and ethical considerations.

Mary Carmichael, CISA, CFE, CPA, is Director, Risk Advisory, at Momentum Technology (Vancouver Canada), and member of ISACA’s Emerging Trends Working Group and Risk Advisory Committee.

Read more about it:
Gain a Clearer Understanding of AI
Generative AI 2023: An ISACA Pulse Poll infographic

In this episode, we are joined by Cricket Liu (EVP Engineering, Chief DNS Architect – Infoblox) as we dive deep into the critical role of Domain Name System (DNS) security in closing the gap in today’s interconnected world. Cricket sheds light on the importance of protecting critical infrastructure and the significant role DNS plays in enhancing visibility and blocking threats. Brought about by his unexpected entry into the field of DNS, his extensive experience in the evolution of the internet from its nascent stages brings historical context to the dialogue, uncovering parallels between the apprehension surrounding generative AI technology and early sentiments toward the internet’s unknown prospects.

Cricket Liu is one of the world’s leading experts on the Domain Name System (DNS), and serves as the liaison between Infoblox and the DNS community. Before joining Infoblox, he founded an Internet consulting and training company, Acme Byte & Wire, after running the hp.com domain at Hewlett-Packard. Cricket is a prolific speaker and author, having written a number of books including “DNS and BIND,” one of the most widely used references in the field, now in its fifth edition.

In this episode, we are joined by James Campbell (CEO and Co-Founder of Cado Security) as we explore modern digital forensics and the complexity of the cloud. They discuss the transition from on-premise to cloud operations, the unique risks associated with ephemeral cloud infrastructure, and the growing need for automation in digital forensics to streamline routine tasks and enable security professionals to focus on advanced problem-solving. Join us as we unravel the intricacies of cloud security, automation in digital forensics, and the continuous learning and adaptation necessary to stay ahead in the rapidly evolving industry.

With over 15 years experience helping global organisations tackle sophisticated cyber espionage and criminal campaigns, James has a deep passion for cyber incident response, forensics and cyber crisis. Prior to founding Cado Security, Campbell served as a Director at PwC building the Cyber Incident Response service. Campbell’s background also includes a career in intelligence previously leading Australia’s National Incident Response capability as the Assistant Director of Operations at the Australian Signals Directorate. James is an active thought leader having spoken at various conferences including Blackhat, Cloudsec, Crestcon, and the Forensics Europe Expo.

In this episode, we are joined by Alex Tilley (Head of Threat Intelligence, Asia Pacific and Japan – Secureworks) as we dive deep into the challenges that come with fostering a strong security culture within organizations. We explore the importance of cross-departmental collaboration, the need for clear and engaging cybersecurity training, and the emotional hurdles of dealing with security incidents.

Alex shares valuable insights in handling crises, addressing ego-driven conflicts, and the crucial role of the board in cyber. Join us as we unravel the intricate layers of today’s security culture and learn from his experiences and expertise.

With over 20 years of experience in computer security and cybercrime, Alex Tilley is a highly awarded cybercrime researcher. Beginning his career in the online casino industry on Australia’s Gold Coast, Alex went on to implement and administer many varieties of network security technologies within Australia’s banking industry. Alex was on the forefront of research and countermeasures when phishing and malware first began to attack banking platforms and customers. When he later became the Australian Federal Police’s senior cybercrime technical analyst, he combined his technical background with an analytical approach to discover “who” the cybercriminals were, why they were attacking specific targets, and what they were looking for. This included identifying exposing online child predators as well as cybercriminals.  During this time Alex become a key member of the operations team responsible for many high profile cases.

In this episode, we are joined by Rachael Greaves (CEO and Co-Founder at Castlepoint Systems) as she sheds light on the far-reaching consequences of records mismanagement and the integration of artificial intelligence (AI) in decision-making processes. The discussion delves into the ramifications of mishandling information, the advent of new privacy regulations, and the imperative need for efficient records governance in the age of evolving technology.

Rachael highlights the need for a new approach to managing information, acknowledging the challenges of audits and their impact on users and systems. She emphasised the potential of AI technology in managing information and its effects on regulators and businesses, particularly as noncompliance in audits and increased pressure from regulators due to cybersecurity and privacy concerns become prevalent.

Rachael Greaves is CEO and Co-Founder at Castlepoint Systems, and has consulted on large-scale records, security and audit projects in government and regulated industries with complex integrated environments. Rachael’s credentials include: Certified Information Systems Auditor (CISA), PRINCE2 (Practitioner), Certified Data Privacy Systems Engineer (CDPSE) ITIL v3 (Foundation), AIIM Certified Information Professional (CIP), and AIIM SharePoint Information Management Specialist. She is also an IIBA member.

In this episode, we are joined by Jenai Marinkovic (Executive Director & Chairman of the Board – GRC for Intelligent ecosystems or GRCIE) as we discuss ISACA’s White Paper – The Promise and Peril of the AI Revolution: Managing Risk. We discuss the risks, challenges, and societal impact of generative AI, while also touching on the urgent need for policies, frameworks, and control structures to address these evolving concerns. Jenai also talks about the crucial role of ethical standards in the deployment of AI, the implications of job displacement and skills adaptation, and the future of AI through the lens of governance, cybersecurity, and training.

Jenai Marinkovic is a multidisciplinary technologist and strategist with 20 years of experience in architecting, building and securing systems at scale. She has designed and operated in real-time over the top streaming ecosystems that power live sports, gaming, and entertainment. She’s also worked in biomedical manufacturing and laboratory diagnostics, healthcare tech and robotics in agriculture.

Jenai’s worked with artificial intelligence, its impact on diversity and inclusion as well as improving human empathy towards machines. She has expertise in designing the next generation security experiences necessary to support digital transformation She has built and run design, architecture, innovation, engineering, security and operations teams. Her security expertise spans security architecture, engineering, defense, and forensics and invented a cyber defense framework for large scale breaches based on American football. Jenai has worked for large enterprise brands including DIRECTV, Electronic Arts, Beckman Coulter and international investigations firms such as Kroll.

Now she serves as the Executive Director & Chairman of the Board at GRC for Intelligent ecosystems or GRCIE (Pronounced Gracie).

In this episode, we are joined by Dan Elliott (Principal for Cyber Security Risk Consulting – Zurich Resilience Solutions) as we delve into the critical topic of aligning cyber leaders with business objectives. We explore the challenges of communicating cyber risks effectively, dissect the need for a common language in cybersecurity, and discuss the evolving role of CISOs as business enablers. Join us as we tackle the intricacies of cyber risk management, the importance of understanding business goals, and the quest for a universal language in the cyber world.

Dan Elliott is the Principal for Cyber Security Risk Consulting at Zurich Resilience Solutions (ZRS) Canada and is responsible for supporting ZRS’s clients in making risk-based cybersecurity decisions to improve their overall organizational resilience. Dan has over 15 years of experience in national security and risk management and brings a unique perspective to cyber risk, having spent six years as an Intelligence Officer with the Canadian Security Intelligence Service (CSIS). Prior to that, he spent nearly a decade in law enforcement and intelligence, investigating multinational criminal organisations both online and in person. He evaluates cyber risk with the knowledge of international threat actors and the potential impact they pose to businesses and critical infrastructure, helping organizations improve their overall risk posture.

Dan is also trained in multiple cyber risk management frameworks and holds specialized expertise in stakeholder management and strategic program design. He speaks internationally about the communication challenges that exist between traditional technical professionals and business leaders. He is a regional board member of the Risk and Insurance Management Society (RIMS), a Risk Fellow (RF) and is a Certified Risk Management Professional (CRMP and CRM). Dan is a contributing member of the Cybersecurity Advisors Network (CyAN), a volunteer member with ISACA and is accredited as Certified in Risk and Information Systems Controls (CRISC).

In this episode, we are joined by Tulin Sevgin (Director – National Cyber Security Practice, MinterEllison) as we unravel the complexities and potential oversights in working with vendors. Tulin sheds light on the critical need for due diligence in the procurement process to mitigate future risks, emphasising the impact of vendor changes on data access and infrastructure. Tulin navigates the labyrinth of vendor risk governance and emphasizes the significance of ongoing monitoring. Join us as we delve into the intricacies of vendor assessments, the challenges involved, and the supply chain landscape.

Tulin Sevgin is a strategic thinker and cyber risk management specialist with experience in public and private sectors. Tulin has held senior positions with Commonwealth Bank, Westpac, Optiver and Deloitte.

Amongst Tulin’s career she has successfully started up and led a cybersecurity practice at a boutique consultancy and is now leading the TPRM team at UpGuard growing the CyberRisk product and services.

Tulin specializes in cyber risk management including TPRM, cyber risk threat analysis, prevention,
control and assurance. Tulin’s past working experience spans enterprise risk management, business
continuity, risk culture analysis, project management, issues management, IT audit, data analytics,
internal audit and external audit.
Tulin has worked across multiple projects from:

• Developing and implementing successful Third-Party Risk Management Frameworks
• APRA Prudential Standard CPS234, GDPR, CCPA, NDB scheme readiness
• Information Security Officer positions
• Cyber Security Incident response exercises
• Creating and exercising data breach response plans
• Developing, managing and testing IT disaster recovery plans
• Enhancing cyber risk frameworks for various clients
• Facilitating cyber security awareness training
• Post cyber incident reviews
• Social engineering projects

In this episode, we are joined by Geoff Schomburgk (Regional Vice President, Asia Pacific & Japan – Yubico) as we explore the transition from traditional username and password systems to passwordless experiences. Together, we discuss the frustrations with current security methods, the need for consumer awareness, and the importance of businesses and government setting the standard for security measures. From practicality and usability to the business value of security technologies, Geoff delves into the evolving conversation around cybersecurity and the potential for multifaceted benefits. Tune in for a deep dive into the future of digital identity protection and the impact of modern authentication methods.

At Yubico, Geoff is responsible for driving the Yubico business across Australia and New Zealand, working with partners and enterprise customers to implement secure modern authentication, helping make the internet safer for all.

Geoff brings a strong customer focus and a proven ability to implement complex technology solutions across a range of industries, including telecommunications, utility and transport sectors across Australia, Asia and Europe.  Critical to the success of these projects is the definition and realisation of tangible business value, where the combination of Geoff’s business consulting approach and project delivery experience consistently deliver business value.

Geoff is an experienced senior executive with a background in engineering and strategy consulting and over 30 years’ experience in the global information and communications technology (ICT) industry.  Geoff has a Bachelor of Engineering and MBA and is also a Non-Executive Director and business mentor to several Not For Profit (NFP) organisations. He is a Fellow of the Australian Institute of Company Directors (GAICD), with B.E. (Hons) and M.B.A.

In this episode, we are joined by Pierre Liddle (Co-Founder, Plerion) dive deep into the ever-evolving landscape of cloud security, tackling misconceptions, and examining the potential of cloud native application protection platforms (CNAPP) as a line of defense against attacks. We shed light on the dynamic nature of security threats, the benefits of cloud technology, and the strategic importance of finding the right partners.

Pierre Liddle is a distinguished expert with over 20 years of dedicated experience in the dynamic field of security. As the Co-founder and CTO of Plerion, he serves as the guiding force behind the company’s strategic vision. Pierre’s extensive career includes an impressive seven-year tenure at AWS, where he played a crucial role in driving global internal security programs and collaborating with customers to design, build, and manage secure cloud workloads. This direct and hands-on engagement has equipped him with an unparalleled understanding of the precise challenges and pain points that organisations encounter in the realm of cloud security.

With a profound commitment to enhancing cloud security practices, and a vision to make the world a safer place by empowering customers to conquer the future, Pierre brings his wealth of knowledge to the forefront at Plerion. His leadership and domain expertise empower the company to provide cutting-edge solutions that address the evolving needs of businesses in an increasingly digital world. Pierre’s invaluable insights and dedication to innovation underscore his role as a driving force behind Plerion’s mission to revolutionise cloud security.

In this episode, we are joined by Ashwin Ram (Office of the Chief Technology Officer – Check Point) as he dives deep into the need for clear communication of cyber risks, addresses the challenges faced by security practitioners, and highlights the importance of credibility in cybersecurity strategies. From leveraging diverse threat intelligence sources to staying updated on emerging threats and attack strategies, this episode provides valuable guidance for executives and board members. Stay ahead of cyber threats, understand the evolving landscape, and ensure comprehensive cybersecurity strategies for your organization’s success. Tune in now to gain valuable, actionable insights.

Ashwin Ram is a seasoned cyber security expert and thought leader with a unique blend of CISO consulting experience and technical know-how. He is widely regarded as a trusted advisor by industry titans, startups, and industry collectives due to his ability to translate technical threats into business contexts to evaluate overall risk to organisations.

With his deep security knowledge, Ashwin can switch effortlessly between “tech talk” and “business talk,” making him a go-to person for organisations looking to bolster their cyber resilience. In his current role at Check Point Software Technologies, Ashwin assists cyber executives understand, prioritise, communicate, and address cyber risks.

In this episode, we dive deep and explore the intricate cat-and-mouse game between third-party vendors and clients in the cybersecurity realm. They discuss the challenges of ensuring that vendors fulfill cybersecurity contracts and the importance of clearly stipulating cybersecurity requirements to reduce the risk of breaches. Alen stresses the significance of vetting and continuously assessing vendors to ensure a robust security posture.

The conversation delves into the complexities of data classification, due diligence on third-party vendors, and the importance of transparency and accountability in handling breaches. Join us as we unravel the nuances of third-party risk management, cybersecurity marketing, and the potential risks and benefits of AI in the cybersecurity landscape.

Hailing from Eastern Europe, Alen arrives in Australia in 1996 and has been a daily contributor to Australia’s Cybersecurity scene for a over 15 years now. Having helped hundreds of organisations improve their threat landscape and avoid costly breaches, Alen is a leader in the spaces of cyber security, information security, risk management and governance/compliance. Being a regular guest speaker at webinars, summits and industry events – Alen is considered a valuable asset in helping non-technical people understand the value of technology risk management. Experienced across various industries including aerospace, renewable energies, legal, and our government; Alen is highly sought after as an industry subject-matter expert.

In this episode, we are joined by Rad Kanapathipillai (Head of Engineering at DevOps1) as he sheds light on the critical importance of safeguarding sensitive data right from the development phase through to production. The discussion delves into the challenges organisations encounter in protecting sensitive information and the pressing need for encryption, compliance, and code and password protection to prevent data breaches. Rad also emphasizes the urgency of prioritising data protection and implementing strategies that elevate its significance. Moreover, the conversation touches on the evolving focus on security in agile environments and the empowerment of developers to code securely. Throughout the episode, Rad presents insightful solutions, including the use of automation and AI to address security issues.

Rad, Head of Engineering at DevOps1, is a seasoned tech expert with 15+ years in the industry.

Specialising in Platforms and Security, Rad has led platform and devsecops transformations at organisations like Spark New Zealand, ANZ Government, and top financial institutions.

With a strong track record in project management and ethics, Rad has also contributed significantly at Ampion/Wipro’s cybersecurity division, Shelde where he was a Cloud Consulting partner.

In this episode, we are joined by Rob Rashotte as we dive deep into workforce culture and the skills gap. Rob talks about the need for organisations to prioritize upskilling programs and foster a new workforce culture to address skills gaps in cybersecurity. Rob highlights the importance of considering underrepresented groups and economically disadvantaged individuals, as viable candidates for cybersecurity roles.

One crucial theme that we also talk about is the misconception that a university degree is necessary for all cybersecurity jobs. Rob challenges this notion, emphasising that there are many skilled individuals without degrees who can effectively contribute to the field. However, the lack of standardised job roles and descriptions in cybersecurity makes recruiting difficult, leading to the use of a degree as a filtering criteria. To tackle this issue, Rob also emphasises the need for a structured framework for cybersecurity roles. By developing such a framework, the recruiting process can be made easier, and educational pathways can be established that may or may not require a degree. Throughout the episode, we touch upon the role of HR, the use of AI in creating inclusive job descriptions, and the importance of promoting cybersecurity careers to younger candidates.

Rob Rashotte is the Vice President of the Fortinet Training Institute and the Fortinet Technical Field Enablement Program. Rob has more than 20 years of experience developing training and education strategies for startups as well as complex global organisations. He also has more than 15 years of experience working with some of the most innovative, fast-paced companies in the cybersecurity field. Rob has an Executive MBA from the University of Ottawa and is a regular speaker at a number of business schools on the topic of cyber risk and corporate impact.

In this episode, we are joined by Jaya Baloo, Chief Security Officer of Rapid7, as we dive deep into the crucial topic of cybersecurity and its impact on revenue retention and the overall success of organisations. Jaya emphasises the importance of the security team making their contributions visible to the rest of the enterprise, rather than expecting others to figure it out on their own. They discuss the purpose of the security function, the cost of breaches, and the challenges faced by CISOs in communicating the value of cybersecurity to CFOs. Jaya also shares her predictions for the future of cybersecurity, the need for industry standards, and the importance of bringing the cybersecurity industry together to make a significant difference.

Jaya Baloo is the CSO of Rapid7 and has been working in the field of Info Security with a focus on secure network architecture for more than 20 years. She is the former CISO of Avast, and prior to that was CISO at KPN, the largest telco carrier in The Netherlands. Jaya serves on the boards of the NL’s National Cyber Security Centre, TIIN Capital, the NOS, and was former Vice Chair of the EU Quantum flagship. Shie is also on the faculty of the Singularity University. Jaya is recognised as a top 100 security influencer worldwide. In 2019, she was selected as one of the 50 most inspiring Fifty. In 2022 she received an honorary doctorate from the Uni of Twente for her contributions to the field of Cybersecurity.

In this episode, we are joined by Raj Sharma, District Sales Manager of Palo Alto, as we delve into the importance of strategic partners versus transactional partners, the shift in customer preferences, and the role of resellers in delivering exceptional value to customers. We explore how transparency, empathy, and understanding drive successful partnerships, and the challenges faced by resellers in managing multiple vendors and services. Join us as we uncover the keys to relevance, trust, and success in the ever-changing world of technology partnerships.

Raj Sharma, a seasoned professional in the realm of cybersecurity and enterprise sales, boasts nearly two decades of invaluable experience in these domains. Throughout his illustrious career, Raj has consistently demonstrated his prowess by not only navigating the complex landscape of cybersecurity but also by excelling in the dynamic field of enterprise sales.

At present, Raj holds a pivotal role as the leader of a high-performance sales team, where his strategic vision and leadership skills have contributed significantly to the team’s success. His commitment to fostering a collaborative and results-driven environment has positioned the team as a force to be reckoned with in the industry.

Raj is driven by a deep-seated passion for helping clients, partners, and his own team achieve their respective goals. His client-centric approach and keen understanding of the ever-evolving cybersecurity landscape have earned him a reputation as a trusted advisor in the industry.

What sets Raj apart is not only his professional acumen but also his unwavering commitment to continuous self-development and a growth mindset. He believes in the power of ongoing learning and embraces challenges as opportunities for personal and professional growth. Raj’s enthusiasm for learning and adapting to new technologies ensures that he remains at the forefront of industry trends.

Beyond his individual success, Raj finds fulfillment in witnessing the flourishing of others around him. His leadership style is characterized by mentorship and empowerment, reflecting his genuine desire to see his team members reach their full potential. In every endeavor, Raj Sharma exemplifies the qualities of a dynamic and visionary leader who not only excels in his own journey but also inspires others to thrive in their pursuits.

In this episode, we are joined by Ben Gestier (Senior Intelligence Analyst and Team Lead APAC/EMEA – Flashpoint) as we dive deep into the complex and often underappreciated intersection of cyber and physical security. We explore the challenges of understanding and addressing cyber threats in the Australian context and the need to educate and empower individuals and organizations to navigate these evolving dangers. From the use of open source forums by threat actors to the convergence of online communication on real-world actions, Ben sheds light on the vital importance of collaboration and awareness in combating cyber and physical security threats. Tune in as Ben Gestier shares insights and experiences that highlight the critical nexus between the digital and physical realms, and learn from his call to action to enhance our understanding and preparedness in the face of converging security risks.

Ben is Senior Intelligence Analyst and Team Lead APAC/EMEA with risk intelligence firm Flashpoint. He’s former intelligence with Australian Federal Police and Australian Defence Force.

In his current role, Ben seeks to synchronise efforts across time zones and threat types to assist in protecting businesses and government elements from threats. This can include identification of risks, vulnerabilities, advanced persistent threats, and how these can manifest in the real world.

The nexus between the online threat and the physical world is where Flashpoint strives to provide assistance to its clients to help in protecting people, assets, information, and infrastructure.

Prior to joining Flashpoint, Ben was a Criminal Intelligence Analyst with the Australian Federal Police. As part of his work with AFP, Ben established the Aviation Protection Assessment Team (APAT), which was responsible for undertaking physical vulnerability assessments at airports across Australia. An integral part of this role included understanding the online communication methodology of criminal and threat elements. During his time with the ADF, Ben worked as part of the intelligence capability, in operations both domestically and internationally.

In this episode, we delve into the dynamic landscape of smart cities with a captivating discussion featuring Puneeta Chellaramani. Puneeta enlightens us on the potential benefits, ethical implications, and the evolving challenges associated with the implementation of smart city initiatives. We explore every angle from the increasing threat landscape to the potential impact on sustainability and citizens. Tune in now and learn more about digital twins, spatial services, and the implications of smart cities to everyday life.

Puneeta offers management consulting and cyber security experience with a pragmatic approach in implementing sustainable change. She is both a coach and advisor to clients across diverse industries advocating a 2-speed approach when navigating through their cyber, digital and innovation journey.

Connecting vision and reality – she helps organisations move with confidence to overcome the challenges of an ever changing threat landscape, and work with them all the way from business intent to value realisation & combat business risks.

Puneeta has been a cyber security Practitioner helping CISOs & CROs adopt pragmatic solutions that Reduce business & Compliance Risks; harnessing her exuberant skills & experience across consultative selling, building security business solutions, customer management, security advisory & roadmaps across large transformation programs.

She has provided leadership and managed large and distributed teams, managing a multi-vendor and rightshore delivery model, be seen as a cyber/technology enablement advisor in a diverse and geographically dispersed working environment partnering seamlessly across business and IT.

In this episode, we dive deep into the intersection of global events and issues and cybersecurity. David discusses the impact of geopolitical risks on cybersecurity, the urgent need for collaboration, comprehensive risk management, and the adoption of security strategies such as zero-trust.

From international trade tension to the Ukraine-Russia conflict, David and KB delve into the complex interdependencies and challenges in safeguarding organizations worldwide.

David Chow brings over 20 years of experience in the federal government to his role as Chief Technology Strategy officer. His focus includes analysing, managing, and implementing technologies to assist with building and maintaining a global cybersecurity strategy. Much of his expertise stems from working alongside the Federal Housing Administration (FHA) to modernise the agency’s mortgage loan systems and mature its cybersecurity program. He served on a number of additional roles within the federal government, including executive and leadership positions at the Department of Transportation and the White House. Prior to joining Trend Micro, David demonstrated success in accelerated digital transformation through secured cloud adoption as the Global SVP on NextGen Solutions at CoreLogic, a FinTech data company. David Chow is on the Advisory Board of George Mason College of Engineering and Computing.

In this episode, we are joined by Mike Zachman (VP & CISO – Zebra Technologies), as we delve into the untapped potential of automation in security processes. Mike discusses how automation enhances data protection by reducing human error and facilitating faster threat detection and response. He emphasizes the importance of consistency in processes and the need to free up resources for more strategic tasks. The conversation explores challenges in implementing automation, the value of accurate and timely reporting, and the relevance of high fidelity signals in automation. Tune in to discover the key takeaways and insights on driving change and leveraging automation for improved security measures.

Mike Zachman is currently the Chief Security Officer (CSO) at Zebra Technologies, where he has global responsibility for its enterprise-wide product security, information security, corporate security and business continuity programs. Zachman is an experienced global leader with over 30 years of information security, risk management and information technology expertise.

Previously, Zachman was Chief information Security Officer (CISO) at Caterpillar, Ecolab, and Forsythe Technologies. Zachman holds an undergraduate degree in management information systems from Millikin University, and a master’s degree in business administration from Bradley University. He is a Certified Information Security Manager, Certified Internal Auditor and is Certified in the Governance of Enterprise IT. He is an active volunteer with Junior Achievement and Easter Seals.

In this episode, we are joined by Jamil Farshchi (EVP & CISO – Equifax), as we dive deep into the world of leadership and the importance of driving the right behaviors in your team. We also explored the strategic partnerships between the government and corporate community, focusing on improving public-private collaboration to tackle cybersecurity threats. We discuss the challenges and progress made in information sharing, especially for small to medium-sized businesses. Jamil also shares their groundbreaking initiatives, including their open and honest approach to security reporting and real-time visibility for customers. Jamil emphasises the need for dialogue, diverse perspectives, and breaking down barriers in the security field, and highlights how cybersecurity has become a top priority for organizations worldwide, stressing the importance of investing proactively to avoid breaches.

Jamil Farshchi is EVP and Chief Information Security Officer of Equifax (NYSE: EFX). Farshchi joined Equifax in the aftermath of one of the most consequential data breaches in history. During his tenure, he led an unprecedented $1.5 billion transformation and has built what is regarded as one of the most advanced, effective, and transparent cybersecurity and privacy programs in business today.

Prior to Equifax, Farshchi was Chief Information Security Officer of The Home Depot, Chief Information Security Officer of Time Warner, Vice President of Global Information Security for Visa, Chief Information Security Officer of the Los Alamos National Laboratory, and Deputy Chief Information Assurance Officer of NASA.

Farshchi serves on the Board of Directors for UKG, is a Strategic Advisor for the FBI and serves on the Board of Directors for the National Technology Security Coalition. He was named a Top Voice in Technology and Innovation by LinkedIn.

In this episode, we take a deep dive into the fascinating world of international careers and the challenges and triumphs that come with them. KB sits down with Amy Meyer (Founder – Aussie Recruit), who shares her experiences and insights, reflecting on how Australians can navigate the US job market, capitalize on their unique value proposition, and build successful careers across various industries. From cultural nuances to visa processes and the power of networking, this episode is a goldmine of advice for anyone considering making the move from Down Under to the land of opportunity. If you’ve been thinking about taking the leap necessary for your own international career breakthrough, tune in.

Amy is the founder of Aussie Recruit and has supported thousands of Australians with their US job search. She specializes in connecting Australians with jobs in the US at companies hiring Aussies on E-3 visas. Amy has 7+ years of experience recruiting in the US market.

Amy is a dual Australian-American. She relocated from Sydney to San Francisco 10 years ago. She has first-hand experienced and overcome the challenges Australians face getting jobs in the US.

Prior to starting Aussie Recruit, she was Head of People at an early-stage tech company and hired many Australians on E-3 visas. She also started and runs the Australians In San Francisco Bay Area.

You can find Amy sharing tips & stories on Instagram almost every day.

Amy is also a full-time mum of 3 and started Aussie Recruit when her 1st child was just a few months old.

In this episode, we dive deep into the intersection of cybersecurity and the legal world, as Annie Haggar of Cyber GC takes us through the pros and cons of additional barriers to entry in the industry, the impact of regulations on quality assurance, diversity, and the existing skills gap. Annie also discusses how businesses can navigate and strategise in terms of compliance with industry-specific legislations, and how governments can strike a balance between effective regulation and reasonable costs for compliance.

Annie is the founder and principal of Cyber GC – a legal and consulting practice dedicated to helping Australian businesses prepare for and fight cyberattacks. Annie is a multi-award-winning cybersecurity lawyer and was recently awarded General Counsel of the Year (Australian Law Awards – Lawyers Weekly – 2021).

She brings to Cyber GC the experience gained in 20 years as a technology lawyer, 12 years working for one of the largest technology companies in the world and 6 years as global legal counsel for Accenture Security, one of the largest security companies in the world. She specialises in advising on enterprise security risk, cyber regulation, procurement risk management, and the impact on the whole organisation of cybersecurity issues.

Based in Canberra, Australia, she lives with her two little girls (3 and 5), husband Tony and fur baby, Scout the Jack Russell-Foxy cross. Outside of work and volunteering, you will find her tending to her bees, cooking Ottolenghi, tending her veggie patch and sewing, quilting, knitting and crafting.

In this episode, we are joined by EJ WISE (Principal and Founder – Wise Law). From tailoring preparedness measures for different audiences to the importance of customizing business continuity plans, EJ Wise highlights the pitfalls of generic templates and the need for proper training. She also explores the parallel between physical safety measures and cyber security preparedness, challenging organizations to identify their cyber wardens. Plus, we’ll discuss the potential HR and morale problems associated with neglecting policy updates and the importance of keeping policies relevant and engaging. Don’t miss out on the valuable advice EJ has to offer as she addresses the legal aspect of cyber preparedness, the role of communication teams during incidents, and the necessity of regular practice in handling cyber incidents effectively.

Professor EJ Wise (she/her) is Principal and Founder of Wise Law in Melbourne and: 

• Adjunct Professor, Faculty of Science, Engineering & Built Environment, Deakin University 
• Lecturer, School of Law, Society and Criminology, Faculty of Law and Justice, UNSW 
• Lecturer, Melbourne Business School (Public Policy) 

• Sessional Academic, Thomas More Law School, ACU 
• Member, Executive Advisory Board for Cyber, Deakin University 
• Member, Industry Advisory Board for Cyber, RMIT 
• Member, Advisory Committee of the UNSW Institute of Cyber Security, UNSW 
• Founding Chair, Australasian Cyber Security Institute 
• Founding Director & Treasurer, National Institute of Strategic Resilience 
• Member Law Council of Australia International Law Section 
• Member Belgium Avenue Neighbourhood House Executive Committee 

EJ has 29 years legal experience in Australian Federal and State Governments as well as in private practice and academia, specialising in cyber law, policy, strategy, governance, international law & international humanitarian law and is an internationally recognized cyber law expert. 

EJ’s 21 years of service in uniform as a Legal Officer with the Royal Australian Air Force includes postings in the RAAF’s cyber and information operations squadron and on exchange with the United States Air Force’s JAG Corps in the Pentagon for three years.  EJ is a decorated veteran who served twice in the Middle East during Australia’s engagement in international armed conflict.  EJ’s volunteer roles have ranged from working in a Community Legal Centre to providing CPD to the Federation of Community Legal Centres in Victoria, being on the International Humanitarian Law Committee of the International Committee of the Red Cross to membership of Cyber Security Advisory Boards and Committees. 

EJ has assisted in drafting laws, relevant texts and manuals in Australian, International and US jurisdictions. She has assisted in law enforcement as well as cyber operations. EJ has strong community values and gives her time to community and not for profit organisations as her contribution to a fairer, more inclusive and equitable society for everyone. 

Using tech without cybersecurity is like driving a car without a seatbelt and with no idea of its service history 

– EJ Wise, founder of Wise Law

In this episode, we are joined by Special Forces team commander, Adam O’Donnell (CEO, Convergence Systems), as we explore the challenges and opportunities faced by SMBs in understanding their cybersecurity needs and finding affordable solutions. Together, we explore the complex ecosystem of cyber and the intricacies in finding the right balance between usability and security, which is no easy feat!

As a Special Forces team commander, Adam O’Donnell successfully led high-performing teams in some of the most hostile and volatile places on earth.

Looking back, he’d be the first to agree that his transition into the world of cybersecurity was something of an accident but he soon found that the decision-making, planning and leadership skills that served him so well leading combat operations and peacekeeping missions around the world also paved the way to a very successful corporate career leading cyber resilience uplift programs across government and large enterprise.

The challenge, he realised, was that his work was actually creating another problem – small and medium enterprises were being left behind in the cyber arms race and becoming increasingly vulnerable to attackers who only ever seem to grow in their sophistication and numbers.  As CEO of Convergence Systems, a Melbourne-based startup, he’s leading the creation of an eXtended Detection & Response system designed specifically for the cloud-based SME market and delivered at a price they can afford.

In this episode, we are joined by Edwin Kwan (Head of Application Security and Advisory – Tyro Payments), as he sheds light on the meticulous risk acceptance process and shares his insights on using open source software to build applications swiftly with freely available parts. We explore the challenges of ensuring the security of open source software and the need for due diligence when downloading such software. Edwin raises thought-provoking questions about software verification, maintenance, and security, highlighting the tricky balance between maintaining security protocols and accommodating a wide range of individuals in the workplace.

Stay tuned as we examine the potential risks of using open source software and the complexities of explaining security issues to individuals who may not fully grasp their implications. Edwin shares captivating stories and real-life examples, including incidents where businesses chose to accept high-severity risks rather than investing in their mitigation.

Edwin a cybersecurity specialist whose approach towards security is to raise awareness, provide light touch controls to the software development life cycle to increase visibility of security issues, and work closely with engineering teams to quickly develop secure applications.

He started out as a software engineer and transitioned into application and information security to lead a range of security initiatives when the company was working towards obtaining an unrestricted banking licence.

He has presented at several events, including RSA, AISA, All Day Dev Ops, AppSec Day, OWASP and DevSecOps Leadership Forums.

Edwin is also a contributing journalist to the It’s 5:05 Podcast, a daily podcast on open source and cybersecurity news.

Protecting customer data has become a critical priority for banking and financial institutions worldwide. With the ever-increasing threat landscape and the potential devastating consequences of data breaches, organizations are taking significant steps to enhance their data security measures. In this episode, we dive deep into the world of banking compliance and cybersecurity regulations as Syed Ubaid Ali Jafri brings us his expertise as the (Head of Cyber Defense & Offensive Security – HBL), one of the leading banks in Pakistan. Ubaid shares insights on achieving Payment Card Industry Data Security Standard (PCI DSS) compliance, the challenges faced by banks in meeting these strict requirements, and the importance of trust and verification in the zero-trust model. We also explore the banking regulations in Pakistan, the measures taken to reduce the threat landscape and potential attacks, and the additional controls that have significantly reduced breaches.

Ubaid Jafri is a dynamic and talented motivational speaker renowned for his distinctive ability to seamlessly weave real-life experiences into captivating presentations. With over 12 years of invaluable experience in the commercial banking and risk management consultancy sectors, he has carved a niche as an expert in Information Security. His speaking engagements are not only entertaining but also deeply enriching, offering audiences practical insights into real-world work scenarios across diverse industries.

Ubaid Jafri’s professional journey encompasses leadership roles that define his expertise. Currently serving as the Head of Cyber Defense and Offensive Security at Habib Bank Limited, he previously held the position of Senior Manager Cyber Security & Forensic Technology at KPMG. His proficiency extends to Cyber Defense, Offensive Security, Red Teaming, Cyber Analytics, IoT, Digital Forensics, Incident Handling & Response, and various other crucial areas.

Ubaid Jafri’s impact on the cybersecurity landscape is marked by a series of achievements that demonstrate his tenacity and expertise. He has conducted numerous communication and cybersecurity intrusions, as well as penetration red-team attacks, for a diverse array of organizations, including utilities, power companies, Banking & Financial Institutions, and more. These proactive initiatives have consistently unearthed critical vulnerabilities, thwarting unauthorized access, system compromises, sensitive information disclosures, and control hijackings. His vigilant approach has significantly contributed to safeguarding organizations from the looming threat of massive cyber breaches.

Ubaid Jafri’s speaking engagements, fueled by engaging narratives, practical insights, and heroic anecdotes, position him as an exceptional motivational speaker. His mission is to empower audiences with the tools to navigate the digital era confidently, equipped with the knowledge to safeguard against evolving cybersecurity challenges.

In this bonus episode, we turn the tables around and feature KB as the guest of her own show. Jay Hira (Founder and Executive Director of MakeCyberSimple), an industry expert and long-time peer, takes the host’s seat and asks KB about her rollercoaster journey into the industry. From a belief in the transformative power of challenges to the importance of consistency and evolution, KB has navigated the ups and downs of entrepreneurship with determination. With gratitude for the support she’s given and the invaluable life lessons learned along the way, KB reflects on the wild and crazy ride of building her business and her brand. Join us as we delve into the power of perseverance, the impact of recognizing and believing in one’s identity, and the unwavering commitment to continual (and sometimes gradual) improvement. Get ready for an inspiring and honest conversation about triumphs, setbacks, and the exhilarating unpredictability of the entrepreneurial path.

Karissa Breen, more commonly known as KB, is a serial entrepreneur that founded KBI.Media, the independent & agnostic global cybersecurity media company. KB has been crowned LinkedIn Top Voice in Technology. KB is a Cybersecurity Investigative Journalist that hosts the flagship podcast, KBKast, interviewing cybersecurity practitioners from around the globe about security and the problems business executives face.

KB is known for asking hard-hitting questions and getting real answers from her guests, providing a unique yet neutral position on these topics. KB is also the Producer & Host of the streaming show, 2Fa.tv, where she asks questions to demystify the world of cybersecurity, providing insight into the world of security to business executives, and focuses on the downstream impacts these cybersecurity events have on our markets.

As the world starts focusing on sustainability and ethical business practices intensifies, organizations are increasingly embracing ESG initiatives to demonstrate their commitment to the environment, social responsibility, and good governance. While ESG programs encompass a wide range of considerations, one aspect that should not be overlooked is cybersecurity. In today’s digital age, the integration of technology and cybersecurity is paramount to the success and integrity of ESG programs. In this episode, we discuss the intersection of technology and ESG, highlighting how cybersecurity protects against potential damage and disruption to green energy production and efficiency improvement. Additionally, we address the growing demand for ethical behavior from companies, the risks of focusing solely on media attention and neglecting proper security practices, and how breaches in trust can have long-lasting negative effects on reputation.

ESG initiatives were among the winners in this year’s Federal Budget, with $4 billion in new funding commitments aimed at accelerating Australia’s clean energy sector. However, it is important for businesses to not overlook cybersecurity as a crucial component of their ESG strategy moving forward. While companies often prioritise social and environmental initiatives, they tend to neglect cybersecurity in those areas, viewing it as only a part of the governance initiative. It’s often left to regulators or insurance providers to handle, despite the fact that cyberattacks can have a direct material impact on social and environmental matters whether through critical infrastructure compromise, data privacy violations, the loss of social trust and other impacts to partner organisations. The risk from cyberattacks can then result in potentially weakening every aspect of an ESG strategy, and not solely in technical matters or governance.

In this deep dive, we are joined by Fernando Serto, Chief Technologist and Evangelist of Cloudflare. With a deep understanding of the potential risks posed by accelerating climate change and fast-paced advancements in artificial intelligence (AI), he advocates for a careful and balanced approach to development. Fernando emphasizes the need to reflect on the consequences of our actions and the urgency to reduce our carbon footprint. He highlights the interconnectedness of today’s world, where people increasingly rely on AI-powered devices. While acknowledging the potential risks associated with AI, he believes that we are not yet at the point of no return. As an advisor, Fernando encourages individuals and organizations to exercise caution and approach AI development with a sense of responsibility. He highlights the positive aspects of AI when implemented correctly, emphasizing its ability to simplify and enhance our lives. Finally, we also uncover the importance of patching vulnerabilities quickly, the need for better cybersecurity practices, and the challenges faced by organizations in securing their networks.

Fernando Serto – Field CTO for Asia Pacific, Japan and China at Cloudflare – is a highly qualified IT and Security expert with over 27 years of work experience. Fernando has held a variety of technical positions during his career, including Web Development, Unix, Networking, and Security. Fernando had the privilege of being involved with offensive security in the beginning of his career, and as a result, he has since gained a thorough understanding of both offensive and defensive security methods.

Fernando has spent the last ten years working with top technology vendors, where he has established a reputation for his skill in explaining difficult technical security issues to both technical and non-technical audiences. He has a demonstrated history of assisting Product and Engineering teams in creating cutting-edge security solutions based on client input.

Fernando is dedicated to remaining on the cutting edge of new security technology and has a thorough understanding of how businesses can use security to achieve their goals. He is passionate about assisting businesses in creating and putting into practise security plans that allow them to safeguard their assets and accomplish their objectives in the rapidly changing security environment of today.

In this episode, we are joined by Mike Mengell (CTO & Co-Founder – CTO Labs) as we dive deep into the challenges and solutions in the security specialist field, with a spotlight on the APAC region.

Mike is a passionate technologist.

He has over 20 years experience within IT and has worked in both corporate and start-up environments, often adapting technical engineering practices to varying clients, cultures and product requirements.

Mike has a keen understanding that successful teams are a culmination of culture, behaviours, technology, architecture and development techniques. One particular area of interest is the challenge for tech leaders – and pragmatic strategies available to them across people, platforms and processes – in pursuing a deeply secure, fast and productive core engineering capability, critical for enterprise cyber resilience today.

Mike is highly proficient in a range of software engineering practices and has held the role of CTO in a number of companies. He believes in removing waste through repeatable processes and automation.

Mike believes in contributing positively to those around him.

Kyriakos “Rock” Lambros is the CEO and Founder of RockCyber. He is a seasoned Cybersecurity and Information Technology executive with expertise in aligning Cybersecurity and technology strategy with enterprise business goals to reduce the risk of revenue to the organization. This experience includes building multi-framework security programs, policy and standards development, architecture, operations, threat intelligence, governance, risk management, compliance, and incident response for (multi-billion dollar) global organizations with exceptional security and requirements. The frameworks Rock has supported include the NIST Cybersecurity Framework, CMMC, NERC/CIP, NIST 800-53, NIST 800-171, NIST 800-207 (Zero Trust), ISO 27001, SOC2, PCI, and others. Rock’s enterprise experience has spanned industries with vastly differing security and privacy requirements, including energy, eCommerce, government, banking, and manufacturing.

Rock has served in several senior Cybersecurity and technology roles for global, multi-billion-dollar companies such as MPLX (a subsidiary of Marathon Petroleum Corporation), eBay, Honeywell, General Dynamics Information Technology, Wells Fargo, and Agilent Technologies. He built security programs from the ground up on multiple occasions. Rock was a pivotal contributor to M&A activities at numerous companies, including eBay’s acquisition of Shopping.com and Skype and Marathon Petroleum Corporation’s acquisition of MarkWest Energy Partners. Rock oversaw multi-million dollar budgets, led successful defenses against highly-publicized denial-of-service attacks, and built and managed large Security and Network Operations Centers.

Rock serves on the board of several stealth-mode startups as a corporate strategy and Cybersecurity advisor. He is also a member of the Secure Smart Cities Advisory Board at the National Cybersecurity Center and co-chaired the Rocky Mountain Information Security Conference from 2015 to 2017,

A sought-after speaker, Rock has spoken at the annual RSA Security conference, which is the Cybersecurity industry’s seminal yearly event. He has also spoken at the CIO Energy Summit, the Future of Data Security conference, the American Council for Technology, the ISSA CISO Mentorship series, and several industry association chapter meetings.

Rock is a member of ISSA, ISC2, the Cloud Security Alliance, and OWASP. He graduated with an MBA in Finance and Entrepreneurship from Arizona State University and received his BS in Management Information Systems from the University of Nevada, Las Vegas.

Ben is an accomplished information security executive with over 20 years of international information security experience. Due to his many years of providing strategic C-level/board advice, he is able to apply technical threats into appropriate business contexts to determine overall risk to organisations. During this time Ben has been required to manage complex environments that requires balancing local and global organisational policies, domestic regulations, national security requirements, export control and international trade control restrictions, and applying the process, people and technology to ensure successful compliance.

Ben maintains his strong passion for the technical aspects of information security and recently has been focusing on creating new business opportunities by working across the breath of the global organisation’s capabilities while teaming and supporting small innovative start up technology companies.

Ben speaks regularly at international, interstate and local conferences, seminars and round tables

In this episode, we are joined by Mark Anderson (National Security Officer – Microsoft ANZ), as we dive deep into the challenges that executives face in today’s ever-evolving landscape. We discuss the importance of picking the right sources for insights, the non-IT ramifications of incidents, and the need for transparency and communication in the face of cyber attacks. Mark also shares his expertise on the commercialization of cybercrime, human-operated ransomware, and business email compromise that affect both small businesses and large enterprises. We also touch on the true cost of cybercrime and the importance of resilience-building through drills and scenario practice.

Mark has over 28 years’ experience in the IT industry with 18 of those at Microsoft in various roles across the globe. As the National Security Officer for Microsoft Australia & New Zealand, Mark is responsible for working with customers, partners, governments, and industry regulators to ensure that the Microsoft platforms are not only understood by policymakers but also adhere to their security, compliance and risk management requirements. In addition, Mark is accountable for the PROTECTED level assessment of Azure, Office 365, and Dynamics. Mark holds a Master of Cyber Security degree with high distinction from Edith Cowan University and is a Visiting Associate Professor at Macquarie University.

In this bonus episode, KB is on the go at the 2023 Tech Leaders Media and Journalism Conference, where she sits down for quickfire interviews with industry experts and gets their insights on hot topics in the media and cyber space. In this special segment, we are joined by the following experts:

1. Phil Sim – CEO, Influencing
2. Anthony Woodward – CEO, Logicalis Australia
3. Zach Zeus – CEO, BizCubed
4. Matt Hurford – Managing Director – Australia & New Zealand, NetApp
5. Kurt Hansen – CEO, Tesserent
6. Stela Solar – Director, National Artificial Intelligence Centre

An IT and cybersecurity professional, Gergana works with clients to develop creative approaches to reduce their cyber and data security risks. She assists organisations to improve their cyber security posture and supports them to achieve cyber resilient outcomes. Gergana believes that cyber is a business enabler; an intrinsic part of developing the business that can help organisations become more competitive in today’s world.

Gergana is an experienced and respected member of the cybersecurity community in Australia and Asia and an engaging keynote and public speaker on cyber security and privacy matters, risks and issues to the business community. In her spare time, she mentors young professionals and is an advocate for diversity.

Prior to KPMG, Gergana worked for a global IT solutions company as Industry Director Cyber Security for the Asia Pacific region. She was a member of the Australian Information Security Association (AISA) national board and ISACA Sydney board.

Phillip is the CEO of enigmaFIT, a global brain coaching and training company. He has a Master of Cognitive Science and is committed to developing cognitive excellence for clients. Over the past 25 years, he has provided his programs to Fortune 500 executives and entrepreneurs in the USA, Europe, and Asia-Pacific.

The enigmaFIT program is based on over 50 years of research into the CHC Theory of Human Cognitive Abilities. It creates Brain Balance, where the conscious mind and subconscious brain work together to optimally increase an individual’s cognitive capability, a very important aspect in the cybersecurity space.

Phillip is a USA Today and Wall Street Journalist best-selling Author for his contribution to ‘Habits of Success’ and has just completed his new work, ‘Brain Habits: The Science of Subconscious Success’ which has reached Amazon #1 Best Seller in Developmental Biology

Purchasing book – Brain Habits: The Science of Subconscious Success. Click on this Amazon link: Brain Habits Book

To understand more about your Focused Thinking capability, try Phillip’s free assessment:  Complimentary Focused Thinking Assessment

To contact Phillip Campbell, email: [email protected] or visit website: www.enigmaFIT.com

In this episode, we are joined by Kurt Hansen (CEO – Tesserent) as we dive deep and envision Australia as the world’s most cyber secure country by 2030. Kurt addresses the three major pillars when formulating and implementing strategies, and highlights that there is no silver bullet here – we are doing the best we can but keeping the conversation going is also key.

Kurt is the CEO of Australi’a largest ASX listed cybersecurity company,  Tesserent Limited (ASX: TNT).

Kurt previously lead the Security Division at PS+C Group ASX:PSZ. Prior to that, Kurt was responsible at Tesserent ASX:TNT for defining the start up Sales Strategy GTM and building the initial team at Tesserent a newly listed ASX company.

Prior to Tesserent, Kurt was at Check Point Software responsible for $80MAUD Cyber Security Solution Sales and Services in Australia and New Zealand.

Prior to Check Point, Kurt was MD at F5 Networks for almost 5 years and grew the local subsidiary from $20m to $75m during 2009 to 2013, and the team from 17 to 70 people. In FY 2010/11 A/NZ was rated as the fastest growing subsidiary globally and has the highest attach rate of advanced application software and security solutions.

In 2011/12 he also led the Carrier and Service/Cloud provider virtual sales team across Asia Pacific and Japan.

Hansen’s career in the IT industry spans over 20 years. Before joining F5, Hansen was the CEO of AirData Pty Ltd, where he grew top line revenues by 250 percent in over 18 months.

Prior to AirData, he gained extensive sales and operational leadership experience while at Symbol Technologies, Telstra Wholesale, Cisco Systems, and Ericsson. In these positions he was responsible for increasing revenue and managing costs whilst building a senior high performing sales and delivery team.

Hansen commenced his career in IT as an Army Apprentice and later as an officer in the Royal Australian Signal Corps, finishing with the commissioned rank of Captain.

In this episode of KBKast, we are joined by Chester Wisniewski as we dive deep into the modern era of ransomware and discuss the 2023 Ransomware Report by Sophos. We delve into the ever-evolving challenges of negotiating with cybercriminals for encryption keys, the high cost of recovery, and the potential loss of data even if ransom is paid. Chester also imparts insights on the role of cyber insurance and its implications, and ultimately, highlights that preparation is key to prevention. It is high time for organisations to invest in infrastructure and to stay vigilant to limit any type of future damage and to protect sensitive information.

Chester Wisniewski is a field chief technology officer in applied research at next-generation security leader Sophos. With more than 20 years of professional experience,  Chester analyses the massive amounts of attack data gathered by SophosLabs to distill and share relevant information in an effort to improve the industry’s understanding of evolving threats, attacker behaviours and effective security defences. He’s helped organisations design enterprise-scale defence strategies, served as the primary technical lead on architecting Sophos’ first email security appliance, and consulted on security planning with some of the largest global brands. 

Chester regularly speaks at industry events, including RSA Conference, Virus Bulletin, Security BSides (Vancouver, London, Wales, Perth, Austin, Detroit, Los Angeles, Boston, and Calgary) and others. He’s widely recognised as one of the industry’s top security researchers and is regularly consulted by press, appearing on BBC News, ABC, NBC, Bloomberg, CNBC, CBC, NPR, and more. 

In this episode of KBKast, we are joined by Kavitha Mariappan, as we dove deep into the ever-evolving sophistication of ransomware attacks and consequently, the growing importance of budget and resource allocation for cybersecurity, strategy reassessments, and intentional actions based on cybersecurity reports, such as Zscaler’s 2023 Ransomware Report. We discuss how no sector is exempt from attacks, and that while historically, industries like finance and healthcare are targeted, arts, entertainment, education, manufacturing, and even the maritime sector are not immune. Organizations across these industries must recognize the value of information they hold and take steps to protect it.

Kavitha Mariappan is Executive Vice President of Customer Experience and Transformation at Zscaler. With more than 20 years of technology and go-to-market experience, she is responsible for driving transformation and innovation across all facets of the company’s business, customers, strategy, products, and operations

Read the entire 2023 Ransomware Report by Zscaler here.

In this episode of KBKast, we are joined by Glenn Maiden, as we dive deep into the gaps of cyber and shine the light on the importance of connections – between cybersecurity professionals, businesses, government agencies, law enforcement, and other stakeholders. We uncover challenges faced by the industry and how strategic investments, shared expertise, and tactical partnerships can be used to make the lives of cybercriminals a lot more difficult.

Glenn Maiden is the director of threat intelligence operations at Fortinet’s FortiGuard Labs Australia and New Zealand. Glenn has more than 20 years’ experience in different roles across the technology sector with a solid background in defence, federal cybersecurity, and Australian intelligence. Glenn’s role with FortiGuard Labs focuses on sharing threat intelligence to help organisations protect against current and emerging threats with advanced security technologies such as artificial intelligence, intrusion prevention, antivirus, and email security.

In the 200th episode of KBKAST, we are joined by Phil Rodrigues (Head of Security, AWS, APJ Commercial) as we highlight key facts about security in the cloud, including the importance of strong identity measures like MFA, the need for organizations to prioritize security culture, and the role of AWS in providing guidance, security tools, and partner services to help customers make informed security decisions. Phil also touches on the responsibilities of both AWS and customers in ensuring security, and we explore the larger context of cloud technology in the current climate of the technology landscape.

Phil works with AWS customers across Asia-Pacific to improve their security, risk, and compliance in the cloud. He is an information security professional with over 20 years of experience working in top tier research, military, finance and corporate environments in the US, Europe and Asia-Pacific. Before AWS, Phil worked as an Information Operations Specialist in the US Army, as a Penetration Tester on Wall Street and as the regional Vice-President for a global managed security provider.

In this episode of KBKast, Wayne Williamson shares his insights on agile security structures and the importance of prioritizing cybersecurity within organizations. Wayne also highlights the challenges of navigating traditional, centralized structures and emphasizes the need for organizations to pivot and make tweaks to their structures and approaches when undergoing transformation.

Wayne Williamson joined Equifax in August 2020. Wayne has over 20 years’ experience across Information Security and Cyber Resilience spanning large financial organisations within Australia, UK and Europe.

An experienced executive, Wayne is passionate about delivering the right level of oversight, being pragmatic in addressing threats – without compromising cost and user experience, as well as embedding a culture of information security protection ‘by design’ that delivers measured business value and buys-down risk in a cost-effective manner.

Prior to joining Equifax, Wayne held senior roles at Allianz Australia as the Chief Information Security Officer, the Commonwealth Bank of Australia as an Executive Security Officer and abroad at KPMG (UK) and Royal Dutch Shell (UK/Netherlands) as a Security Executive advisor focusing on information protection, business resilience and cyber strategy delivery.

In this episode of KBKast, we are joined by Pancho Mehrotra as we delve into the key to sales success and why accepting rejection is crucial. Pancho discusses the importance of focusing on the process of having meaningful conversations and qualifying clients, rather than just aiming for immediate results. Drawing on the analogy of competitive sports, he highlights the significance of learning from losses and practicing to improve.

Pancho Mehrotra, sales and negotiator trainer, has been helping business leaders and sales teams take their businesses to new levels of sales success since 1991. Pancho is a sales and communications expert who brings a unique set of skills, training, and experience to the table. He is the most experienced and results oriented trainer and has developed his own proprietary sales method that uses psychology and negotiation with amazing results.

Pancho has:

• Over 30 years of hands-on sales and training experience
• Trained over 5,000 salespeople
• Set records for selling in past sales positions (in the insurance industry, he sold over 100 policies in one week!)
• Personally, made over 220,000 cold calls in his career
• Developed his own Emotional Intelligence profiling tool
• His clients have sold over $146 billion in goods and services

Additionally, he has a background in Cognitive Behavioural Therapy and went to Harvard Business School to undertake a specialised course in Negotiation.

In this episode of KBKast, we are joined by Vaile Mexted as we delve into the world of real-time payments and the rapid growth of digital payment options. Vaile discusses the evolving customer expectations and the need for banks to invest heavily in digital tools to stay ahead of fraud and scam risks, and  the importance of building trust in the fraud, cyber, and scam space, and how banks can effectively manage the customer experience while ensuring security.

Vaile Mexted is the New Zealand Country Manager for FICO and Senior Account Director for the Australian market. He has over 25 years’ experience across the technology and financial services sectors delivering enterprise data and analytic solutions, with a particular focus on credit risk management. He is an evangelist for the power of enterprise-wide analytics and decision management, and works to deliver true business value to leading organisations across New Zealand and Australia and their customers. Vaile joined FICO from the Bank of New Zealand, where he was Manager Decision Strategy and then Retail Models programme manager. Based in Wellington, New Zealand, Vaile holds both commerce and science degrees, with a focus on decision management, statistics and operations research.

Founded in 1956, FICO is a pioneer in the use of predictive analytics, AI and data science to improve operational decisions. As a unified platform for fraud and compliance, Fraud Prevention on the FICO Platform helps financial institutions detect and prevent criminal activity before real-time transfer occurs.

In this episode of KBKast, we are joined by James Maude as we dive deep into the 2023 Microsoft Vulnerabilities report. James talks about the rapid increase of vulnerabilities, the impact of the COVID-19 pandemic, as well as a societal technological shift and concerns about foundational security measures and fundamental knowledge.

You can read the full 2023 Microsoft Vulnerabilities report here.

James Maude is Lead Cyber Security Researcher at BeyondTrust, the worldwide leader in intelligent identity and access security.

James has broad experience in security research, conducting in-depth analysis of malware and cyber threats to identify attack vectors and trends in the evolving security landscape. His background in forensic computing and active involvement in the security research community makes him an expert voice on cybersecurity. He regularly presents at international events and hosts webinars to discuss threats and defense strategies.

In this episode of KBKast, we are once again joined by Chris Pogue (CyberCX – US Director of Digital Forensics and Incident Response), as we dive deep into the world of cybersecurity, with a focus on the challenges faced by Australian companies and the potential benefits of breaking through the US market.

Chris Pogue is the Director of Digital Forensics and Incident Response (DFIR) for CyberCX in the Americas and is a member of the global DFIR leadership team.

Over his 25-year career, Chris has led multiple professional security and services organizations to investigate data breaches, secure corporate computing assets and critical value data, implement wide-scale compliance regimes, and help executives and boards of directors both qualify and quantify security risks.

His extensive experience is drawn from careers as a cybercrimes investigator, ethical hacker, military officer, law enforcement and military instructor, university professor, business executive, and board advisor.

Chris served in the United States Army as a Signal Corps Warrant Officer, participating in multiple joint task force missions is support of Operation Enduring Freedom, and the Global War on Terror.  He distinguished himself as an Honor Graduate from a variety of Army Academies and Schools and received multiple awards and commendations for excellence.

Chris was also an active member of the United States Secret Service Electronic Crimes Task Force in multiple field offices as well as the Headquarters Division.  He has also been the recipient of multiple Secret Service Certificates of Appreciation.

In this episode of KBKast, we are once again joined by expert Jo Stewart-Rattray as we delve into the importance of holding organizations accountable for their actions and addressing online gender-based violence. Jo also shares her key takeaways from her recent attendance to a conference held by the United Nations Commission on the Status of Women, and gives valuable insights on ISACA’s 2023 State of Digital Trust Report as compared to last year’s.

Jo has over 25 years’ experience in the security industry. She consults in risk and technology issues with a particular emphasis on governance and IT security in businesses as a Director with BRM Advisory. She regularly provides strategic advice and consulting to the banking and finance, utilities, healthcare, manufacturing, tertiary education, retail, and government sectors.

Securing space technology is no longer a luxury but a necessity for the smooth functioning of our increasingly interconnected world. In this episode of KBKast, we delve into the fascinating world of space technology and its connection to critical infrastructure. Dr. Jordan Plotnek talks about his journey, the challenges of space security, and emphasizes the need for a tailored and collaborative global approach to managing space system security that has humanity at its core.

Dr Jordan Plotnek received a PhD in space systems security and resilience from the University of South Australia and a Bachelor of Engineering in Telecommunications and Electronics from Swinburne University in Melbourne. Jordan is an Australian Air Force veteran and has held senior Operational Technology security positions for private and public sector organisations internationally. Jordan is currently a space security researcher at the University of South Australia and the Lead Partner for Critical Infrastructure at Anchoram Consulting. Jordan’s research and professional interests are centred around space systems security, critical infrastructure resilience, and cyber-physical conflict.

In this episode, Pieter Danhieux joins us in learning the balance between speed and security and the potential impact of AI in various industries, acknowledging that AI is not a magical solution but a tool for assisting with heavy work. Join Karissa Breen and Pieter Danhiuex as they delve into the world of AI and its implications for security analysts and developers alike.

Pieter Danhieux is the Chief Executive Officer, Chairman, and Co-Founder of Secure Code Warrior. He started SCW in 2015 and built this company out to a global cyber security company from Australia with 220+ staff, helping more than 500 Enterprises with building secure coders and software.

In 2020, Pieter was recognised as a finalist in the Diversity Champion category for the SC Awards Europe 2020. In 2016, he was No. 80 on the list of Coolest Tech people in Australia (Business Insider), awarded Cyber Security Professional of the Year (AISA – Australian Information Security Association) and is member of the Forbes Technology Council.

‍Pieter has been a Principal instructor for the SANS Institute since 20o7 teaching military, government and private organisations offensive techniques on how to target and assess organisations, systems and individuals for security weaknesses. Before starting his own company, Pieter co-founder NVISO in Belgium, worked at Ernst & Young and BAE Systems. He is also one of the Co-Founders of BruCON, one of the most awesome hacking conferences on this planet.

‍He started his information security career early in life and obtained the Certified Information Systems Security Professional (CISSP) certification in 2004 as one of the youngest persons ever in Belgium. On his way, he collected a whole range of cyber security certificates (CISA, GCFA, GCIH, GPEN, GWAP) and is currently one of the select few people worldwide to hold the top certification GIAC Security Expert (GSE).

In this episode of KBKast, we are joined by cybersecurity expert Fabian Partigliani. They dive into the world of cybersecurity risk management and how to effectively communicate these risks to the board of a business. Throughout the episode, KB and Fabian stress the importance of making cybersecurity information easy for the board to understand, identifying critical issues, and considering the right level of investment in cybersecurity. The conversation concludes with Fabian sharing insights on how to approach the topic when presenting to a board and the importance of justifying security investments and scrutinizing team performance.

Fabian Partigliani is an experienced Global CEO and Chair/Director, with multi-sector experience in tech, agritech, manufacturing, and fast-moving consumer goods. Fabian has worked across all types of organizations, from blue-chip listed companies to public sector not-for-profits and start-ups. Fabian has always been passionate about helping people and businesses scale to fulfill their potential. Currently, Fabian is the CEO of RedShield Security, an enterprise web application security solution operating in North America, Europe, and Asia Pacific, and Chairman of plant-based food company Smartfoods.

In this episode of KBKast, Pete Murray dives deep into the world of data management and recovery, sharing valuable insights on determining data residence, the significance of backup and recovery when other security measures fail, and the importance of managing access to data with the right tools to determine who has access and whether said access is necessary.

An industry veteran with over 30 years of experience, Pete Murray is responsible for leading Veritas’ overall strategy, sales operations and new business growth in the ANZ region. Pete is passionate about making a difference by giving back to the IT community. In 2017, he co-founded the Jack Edge Connected Classroom Foundation, which provides secure video connectivity from homes to classrooms for terminally ill children.

In this episode of KBKast, Jason Murell talks about the challenges facing the cybersecurity startup ecosystem in Australia. They discuss the funding and support available for startups, the need for a cultural mindset change, and the importance of mentoring and education. Jason also talks about his groundbreaking initiative set to revolutionise the cybersecurity landscape in Australia. Additionally, they explore the opportunities in other countries, such as Israel and Canada, and the need for collaboration and open sharing of information within the cybersecurity community.

Jason Murrell is Group Executive at AustCyber and has been a long-time supporter of Australian start-ups for over 20 years, particularly in the cyber security space for the past 6 years. His accomplishments include helping to launch Cyber Aware in 2017, and most recently with Cyber Hive, after previously contributing to the growth of GRC platform 6clicks.

With a passion for championing, mentoring, and connecting Australia’s cyber networks, Jason is well-placed unite the Australian cyber community and get us as a nation to where we need to be – connected with cyber safety as a priority.

In this episode, Darren delves into the challenges facing the security industry, with fragmented tools and technologies making it difficult for organisations to keep up with the overwhelming volume of data being produced. Bringing together endpoint, network, and identity detection can help pre-correlate and line up activity against a toolset to present legitimate intelligence to SoC teams, thus helping to reduce alert fatigue and enable quick response to potential threats. This episode also discusses the growing popularity of XDR, an extension to traditional cybersecurity tools designed to provide a single console view of network, endpoint, and identity telemetry. While not every organisation will deploy XDR, more and more will move towards its use to better prevent and respond to cyber attacks.

Darren is currently the Senior Director of the Security Business Unit for Asia-Pacific & Japan at VMWare. He has over 25 years’ experience in leading organisations in the Information Technology industry. With both domestic and international experience, Darren has helped build and grow a number of organisations in a wide variety of countries.

In this episode, Brian Grant shares his insights on data security and why organizations should prioritise securing their data before anything else. He emphasises that effective data security starts with a fundamental change in how organizations approach the issue as a social responsibility, not just a business concern. The discussion also delves into the consequences of data breaches, including the potential for life-threatening outcomes, and the need for everyone to prioritise safety in the digital age. Additionally, Grant discusses the critical role of education and consulting in putting cybersecurity controls and investments in context, and how raising awareness can lead to a tipping point where organizations and individuals prioritize it as a foundational value.

Brian Grant is the Thales Regional Director with responsibility for the Data Protection business in Australia and New Zealand. He started his career in technology when he enlisted in the Royal Australian Air Force, working on critical air traffic control systems. He has had extensive hands on and leadership experience in delivering innovative and unique solutions for organisations, with a particular emphasis on networking and cybersecurity. He has held regional leadership roles for a number of technology start-ups and is passionately committed to helping clients embed data security to better deliver confidentiality, integrity and availability in our data dependent world.

In this episode of KBKast, we delve into the world of cybersecurity and the impact of breaches on organizations and society. Raj provides insights into his experience with past cases, emphasizing the importance of being open and transparent in handling breaches and reducing the impact on customers. We uncover the risks posed by social media, the challenge of managing expectations from regulators, and the economic impact of breaches. We also explore how cybersecurity extends beyond computer viruses and IT systems, and how the rise of autonomous vehicles and growing technology dependence increases the risk of attacks. Join us as we discuss the need for transparency and information sharing to improve the collective defense of the industry.

Raj Samani is a computer security expert responsible for extending the scope and reach of Rapid7’s research initiatives. He joins Rapid7 from McAfee where he served as McAfee Fellow and Chief Scientist after serving as VP and Chief Technical Officer in EMEA.

Raj has assisted multiple law enforcement agencies in cybercrime cases, and is special advisor to the European Cybercrime Centre (EC3) in The Hague.

Raj has been recognized for his contributions to the computer security industry through numerous awards, including the Infosecurity Europe hall of Fame, Peter Szor award, Intel Achievement Award, among others. He also co-authored the book ‘Applied Cyber Security and the Smart Grid’ as well as the CSA Guide to Cloud computing, and he has served as technical editor for numerous other publications. In addition to speaking at myriad cybersecurity industry events, Raj is sought after for his commentary on breaking news such as major security breaches and emerging threats. His commentary has appeared in Forbes, The Wall Street Journal, Business Insider, The Daily Beast, and more. He can be found on twitter @Raj_Samani.

In this episode of KBKast, we take a look into the recent announcement from the Australian government about their new cybersecurity regulations for businesses. The new risk management protocol covers cybersecurity, physical security, personnel security, and supply chain security, all aimed at encouraging companies to enhance overall protection measures rather than punishing directors for noncompliance. Marty points out that Australia’s situation with cybersecurity is similar to other countries in the world, with many governments implementing baseline standards to encourage better cybersecurity practices. However, some organizations have made progress in cybersecurity, while others need more government intervention to ensure critical infrastructure security. He also touches on the importance of investing in operational technology systems, including industrial control systems, which have been underinvested in cybersecurity, despite their vital role in operating electricity, gas, water, and transportation systems. As more governments require cybersecurity standards for these systems, both public and private sector organizations should invest in the security of these systems.

Marty Edwards is a globally recognised Operational Technology (OT) and Industrial Control System (ICS) cybersecurity expert who collaborates with industry, government and academia to raise awareness of the growing security risks impacting critical infrastructure and the need to take steps to mitigate them. As Vice President of Operational Technology Security at Tenable, Edwards works with government and industry leaders throughout the world to broaden understanding and implementation of people, process and technology solutions to reduce their overall cyber risk. Prior to joining Tenable in 2019, Edwards—a 30‐year industry veteran—served as the Global Director of Education at the International Society of Automation (ISA). While at ISA, he was recognized by his industry peers with the SANS ICS 2019 Lifetime Achievement Award. Prior to ISA, Edwards was the longest‐serving Director of the U.S. Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS‐CERT). Edwards also served as a program manager focused on control systems security at the Department of Energy’s (DOE’s) Idaho National Laboratory (INL) and has held a variety of roles in the instrumentation and automation fields. Edwards holds a diploma of technology in Process Control and Industrial Automation (Magna cum Laude) from the British Columbia Institute of Technology (BCIT), and in 2015 received the institute’s Distinguished Alumni Award. In 2016, Edwards was recognized by FCW in its “Federal 100 Awards” as being one of the top IT professionals in the U.S. federal government.

Gene Shablygin is a former nuclear physicist and current computer security storyteller. Life-long ham radio operator, relatively young (just under 1000 flight hours) private pilot. Loves classical live music, high-end audio, and fast cars from Zuffenhausen.

As a founder and CEO of WWPass, Gene is focused on freeing individuals and enterprises from ineffective, insecure password systems that can’t protect their data from increasingly sophisticated security threats.

Rik Ferguson is the Vice President of Security Intelligence at Forescout. He is also a Special Advisor to Europol’s European Cyber Crime Centre (EC3), a multi-award-winning producer and writer, and a Fellow of the Royal Society of Arts. In April 2011 Rik was inducted into the Infosecurity Hall of Fame. 

Rik is a researcher, storyteller, and futurist. He helps governments, law enforcement, businesses and individuals to understand the complexities of technology, and its intersection with cybercrime, contributing to global initiatives to combat cybercrime and reduce risk through participation at the United Nations, European and national Parliaments. 

Over his twenty-five plus years of professional practice, he has taken deep dives into the cybercriminal underground and helped the wider world understand the threats of today and how those threats might evolve over time.  

A recognised futurist and world-renowned speaker, Rik has spoken at global events including RSA Conference, Mobile World Congress, Milken Institute, RUSI, GITEX, Infosecurity, Virus Bulletin, e-Crime Congress, IPExpo, CloudExpo, Webit, GovSec, and many more, and is often quoted by media around the world. 

Rik joined Forescout in 2022. Prior to assuming his current role, he served as Vice President Security Research at Trend Micro for 15 years 

Rik Ferguson holds a Bachelor of Arts degree from the University of Wales and has qualified as a Certified Ethical Hacker (C|EH), Certified Information Systems Security Professional (CISSP) and an Information Systems Security Architecture Professional (ISSAP). 

Thomas Fikentscher is responsible for driving strong customer and partner engagement and expanding CyberArk’s emerging cloud business in the region.

Prior to joining CyberArk, Thomas was Chief Revenue Officer at JXT Global, and has more than 20 years’ experience in the IT industry, including significant stints at Oracle, Ingram Micro and Sun Microsystems. His extensive industry and leadership experience – particularly in the cloud domain – has been invaluable to CyberArk, helping grow demand for Identity Security solutions.

When it comes to cybersecurity, Thomas sees a significant opportunity to bridge the gap between technology jargon and business language. A big part of this is helping company leaders understand the importance of identity security to organisational risk management.

Mark Thomas, Director, Security Services, ANZ at Arctic Wolf, aims to build, direct and mature the operations of Arctic Wolf’s security services within the region. For the past 21 years, Mark has worked in the Cyber Security field establishing pragmatic, business-aligned risk minimisation strategies and cyber defenses to reduce losses, protect brand reputation, and achieve return on investment. Mark has held senior leadership and technical management roles, driving mission-critical SOC operations in geographically dispersed matrix environments, enabling greater business resilience and security agility. His previous roles include Senior Director, Threat Intelligence at NTT Ltd Global Threat Intelligence Centre (GTIC), and prior to that, Senior Director, Cybersecurity at Dimension Data.

See also: 2023 Arctic Wolf Labs Threat Report

Sean is the Regional chief security officer for Asia Pacific and Japan at Palo Alto Networks. In this role, Sean spearheads the development of thought leadership, threat intelligence and security best practices for the cybersecurity community and business executives. With more than 20 years of experience in the IT and security industry, he acts as a trusted advisor to organisations across the region and helping them improve their security postures and align security strategically with business initiatives.

Prior to joining Palo Alto Networks, he spent 15 years in a variety of roles at Intel Security (McAfee), with his last position as the Chief Technology Officer for Asia Pacific. Before this, Sean was involved in software development, technical support and consulting services for a range of Internet security solutions. Sean actively discusses security issues in mainstream media, including television, radio, print and security related broadcasts. He regularly participates in forums, conferences and panels, and provides intelligence on cybersecurity matters to the public and private sector.

Read the report here.

David Fairman is an experienced CIO/CSO/CISO, strategic advisor and investor.

David has extensive experience in the global financial services sector. David is currently the APAC CIO & CSO for Netskope helping customers manage their digital and cyber risk programs in addition to working across industry with the aim of making the digital economy a safer place to do business. Furthermore, David is a Partner and CISO-in-residence at SixThirty Ventures, driving innovation and helping build great technology companies.  Previously, David was the Chief Security Officer (CSO) at NAB owning all aspects of Physical Security, Fraud, Investigations and Cyber Security. Prior to NAB, he was the Group Chief Information Security Officer (CISO) for the Royal Bank of Canada. David has been a senior leader at JP Morgan Chase & Co and the Royal Bank of Scotland (RBS) having held several regional CISO and Global Head roles.

David has lived and worked in Australia, the UK, the Netherlands and the USA.

David was raised and educated in Australia where he received his Bachelor of Information Technology in Software Engineering and Computer Science. He holds a Masters of Business Administration and a Masters of Project Management. David began his career in Information Security while serving in the Royal Australian Air Force’s Electronic Warfare and Communications group, where he gained valuable experience in the technology, policy and process aspects of security and risk management.  Subsequently, David worked in a variety of roles in technology and cyber, including in the utilities sector (gas and electricity).

David holds a number of positions on boards of directors and was a founding member of the Security Advisor Alliance (www.securityadvisoralliance.org), and the Canadian Cyber Threat Exchange. During his tenure at NAB, David was the Chair for the Board of Directors for the Australian Financial Crimes Exchange and spear headed the formation of a taskforce involving the big 4 banks, AFP, ASD and ACSC to detect and disrupt cyber-crime impacting Australia. David also advises a number of VC funds and Cyber Security companies.

Recently, David was recognised in the Top 50 Australian Professionals, as profiled by the Top 100 Magazine. David has also been named as one of the Top 10 CISOs to know, and is recognised as a thought leader in the cyber security industry as profiled by K-Logix here.

David co-authored “Cyber Risk” (2016) and co-edited “Fintech: Growth and Deregulation” (2018) published by Risk Books and was the Technical Editor for “Zero Trust Journey Across The Digital Estate” (2022) published CRC Press.

David is passionate about education. He has held Adjunct Professorships at both the University of New York and the University of Toronto and is currently working with Deakin University in Australia.

David currently resides in both Melbourne and Brisbane, Australia.

Chief Technology Officer and Chief Information Security Officer

Kunal joined Imperva when Prevoty, a company he co-founded in 2013 and where he served as CTO, was acquired by Imperva in August 2018. Before joining Prevoty, he was the Director of Technology at BBC Worldwide. Kunal has a deep history of innovation and technical expertise, and has held roles leading security, data, technology, and engineering teams at Gravity, MySpace, and the NASA Jet Propulsion Lab.

He holds a BS from Babson College.

Riccardo Galbiati is the Chief Technology Office for Australia and New Zealand at Palo Alto Networks. With 15+ years of experience in the cyber-security industry, he is able to offer strategic advice to CISOs, CTOs and executives, especially when it comes to rationalising technology adoption and leveraging a Zero Trust approach that aims at business resilience in spite of cyber-attacks.

David Chow brings over 20 years of experience in the federal government to his role as Chief Technology Strategy officer. His focus includes analysing, managing, and implementing technologies to assist with building and maintaining a global cybersecurity strategy. Much of his expertise stems from working alongside the Federal Housing Administration (FHA) to modernise the agency’s mortgage loan systems and mature its cybersecurity program. He served on a number of additional roles within the federal government, including executive and leadership positions at the Department of Transportation and the White House. Prior to joining Trend Micro, David demonstrated success in accelerated digital transformation through secured cloud adoption as the Global SVP on NextGen Solutions at CoreLogic, a FinTech data company. David Chow is on the Advisory Board of George Mason College of Engineering and Computing.

William Gooderson is a high-performance coach and speaker who has worked across Australia and the Asia Pacific region providing coaching and workshops to multiple public and private sector organisations. He focuses on training around personal well-being, building resilience in self and others, leading high performing teams in complex environments, and overcoming cultural challenges in the workplace.

William’s experience has been developed over two decades that included: serving as a British Army officer, paratrooper, and engineer, across Europe and the Middle East leading large multinational teams in both the special forces and human intelligence communities; and working in the Australian private and public sectors developing leaders and team’s capabilities on the skills required to lead self and others, whilst adapting to the challenges of evolving workforces and a hybrid pandemic environment.

William is an Adjunct Lecturer on resilience at the University of Tasmania’s school of medicine and is a frequent speaker with multiple National and State groups. In his spare time, he has enjoyed coaching his son’s rugby and basketball teams, is a member of societal relevance projects that educate refugee schoolchildren and disadvantaged individuals on how to take ownership of their circumstances and runs a mental health and wellbeing group for local Dads.

Peter Bauer is the CEO, Co-founder and Board Member at Mimecast, which he launched in 2003 with fellow Board Member and Co-founder, Neil Murray.

He is the visionary behind Mimecast’s SaaS strategy, which empowers businesses across the globe with comprehensive cyber resilience for email. Mimecast’s security, archiving, business continuity and risk mitigation products and services are all delivered from a single cloud platform. This home-grown, pure-cloud delivery mechanism enables an intuitive user experience, suited to the way people interact with email today.

The combination of next-generation technology and seamless integration with existing email systems, is the driving force behind Mimecast’s success in its mission to transform the way people remain productive, collaborative and efficient in today’s ever-changing threat landscape.

Peter was born and raised in South Africa, trained as a Microsoft systems engineer, and began working with corporate messaging systems in the mid-1990s. He moved to the UK where Mimecast was founded and then moved once more, arriving in Boston, Massachusetts in 2011, to lead Mimecast’s aggressive push into North America. Since that time, Mimecast has been one of the strongest performers in its market segment in terms of customer acquisition and top-line growth, making Peter one of only a handful of CEOs to have lead a pure-Saas company for over 15 years while acquiring tens of thousands of customers worldwide.

Kevin is a CISO leader in the Australian Digital Banking sector and a seasoned information security veteran in the financial services industry.  Kevin’s practical approach to Cyber Security is often seen as pushing the boundaries and balance between user centric design and effective controls.

Kevin began his career as an academia researcher in the late 90s, an educator, and a security engineer, slowly climbing his way through organisations, developing and implementing security controls, when many organisations do not regard information security as a risk.

Today, Kevin is the CISO of a fintech organisation, which is aiming to make a difference to individuals through well thought out banking solutions and products.

During his spare time, Kevin devotes his time by volunteering and giving his time back to the Security industry through his involvement with the ISACA Sydney Chapter. He served on the ISACA Sydney Chapter Board for 8 years and was also a former President, dedicated to serving its over 1600 Chapter members.

Richard Stiennon is Chief Research Analyst for IT-Harvest, the firm he founded in 2005 to cover the 3,051+ vendors that make up the IT security industry. He has presented on the topic of cybersecurity in 31 countries on six continents. He was a lecturer at Charles Sturt University in Australia. He is the author of Surviving Cyberwar (Government Institutes, 2010) and Washington Post Best Seller, There Will Be Cyberwar.  Stiennon was Chief Strategy Officer for Blancco Technology Group, the Chief Marketing Officer for Fortinet, Inc. and VP Threat Research at Webroot Software. Prior to that he was VP Research at Gartner. He has a B.S. in Aerospace Engineering and his MA in War in the Modern World from King’s College, London. His latest book Security Yearbook 2022 was released in June, 2022. Get a copy here.

Glen Pendley is chief technology officer (CTO) at Tenable, where he is responsible for driving the company’s long-term vision, strategy and continued product innovation. Glen has over 20 years of experience in the industry and deep roots leading cutting-edge engineering, research and product teams for global cybersecurity brands. Before his role as CTO, Glen served as Tenable’s deputy CTO and senior vice president of research & development where he led the global engineering and security research teams. Prior to joining Tenable, he was director for research, development and product Management at McAfee, Inc., where he oversaw engineering and product functions across the globe. Glen serves as an executive advisor to a number of companies and began his career in the United States Marines Corps.

Resource:
Exposure Management: Our Vision for Securing the Modern Attack Surface

Adam P. Henry is a cyber security thought leader, published author, international speaker and executive. He has developed research and programs focused on addressing the education, skills and workforce gaps, cyber disaster response/resilience, and cyber warfare. His research and initiatives have focused on developing strategies and effective responses to these key issues. He is Senior Advisor at the Social Cyber Institute and an Adjunct Lecturer at the UNSW Canberra.

Adam has participated in national and international projects and programs and also spoken at major conferences in Australia and internationally. Adam has established strong collaborative networks while in search of impactful partnerships in providing innovative solutions to our biggest technological challenges.

Adam has extensive experience in digital and cyber leadership including transformation, developing, leading and executing technology business solutions and strategies. He is a new thought leader in this field, pushing the boundaries with his research while implementing practical solutions to these global issues.

Lori MacVittie is Principal Technical Evangelist, Office of the CTO, for application security and delivery company, F5. She and F5 CTO, Geng Lin, recently published their book, ‘Enterprise Architecture for Digital Business’, which outlines how to modernise IT for a digital-first world.

The book clarifies why companies struggle with digital transformation, and what it takes to transform IT to become a data-driven, AI-supported digital business.

The book outlines an architecture framework for transitioning IT to operate as a digital business, support innovation and address today’s biggest IT challenges. Each chapter focuses on a specific domain and analyses the trends and technologies driving change, as well as provides recommendations to help organisations adapt.

Lori is a technologist and principal technical evangelist in F5’s Office of the CTO with an emphasis on emerging architectures and technologies including cloud and edge computing, digital transformation, automation and orchestration, microservices, and application delivery.

She has more than 25 years of industry experience spanning application development, IT architecture, and network and systems operation. She co-authored the CADD profile for ANSI NCITS 320-1998 and holds a US patent for application delivery provisioning. MacVittie is a contributing author of books on cloud security and object-oriented development and has authored books on application security and XAML.

Ryan has almost 10 years’ experience within the Cyber Security and IT space. With a lifelong love of IT and Cyber Security, Ryan built his career with the goal of exposing himself to as many environments and unique technologies as possible, preparing himself for a successful pivot into the Cyber Security space.

After pivoting in 2020, Ryan quickly grew into the role of Head of Cyber Security (APAC) for Waterstons Australia and now leads a small team of security engineers. He is known for being an innovative, empathic leader who is focused on continuing to build the Australian team and services through the adoption of bleeding edge training, technologies and techniques.

Passionate about everything tech, Ryan has deep experience in cyber security. His strengths include Open Source Investigation, Security Operations, Incident Management and Penetration Testing.

Eager to share his knowledge and insight wherever possible, Ryan frequently provides mentoring and training within the industry to colleagues and students alike, having previously led workshops, presentations and competitive hacking teams through Cyber Security competitions.

Having joined Waterstons Australia in it’s infancy, Ryan has leveraged his knowledge and team to build and deliver new services to clients globally, including intelligence led scanning, penetration testing and BAU Security Operations.

Deeply curious and fascinated with the Internet and Cyber Security, Ryan spends large amounts of his spare time contributing to bug bounties, participating in competitive hacking with his team, attending talks and presentations and eagerly exploring the Internet.

In this episode, Satnam explores the dangers of pig butchering scams, which are a type of investment fraud that typically involve romance and human trafficking, originating in Southeast Asia. He discusses elaborate scams using romance platforms, and how criminals use stolen images of real women to present themselves as real people. He also explores the dangers of online dating scams and the repercussions which can be severe. Finally, He suggests people should always question if something seems too good to be true.

Satnam Narang is Sr. Staff Research Engineer at Tenable with over 14 years of experience in the industry (M86 Security and Symantec). He contributed to the Anti-Phishing Working Group, helped develop a Social Networking Guide for the National Cyber Security Alliance, uncovered a huge spam botnet on Twitter and was the first to report on spam bots on Tinder.

He’s appeared on NBC Nightly News, Entertainment Tonight, Bloomberg West, and the Why Oh Why podcast.

Jane Frankland is an award-winning leader, best-selling author, speaker and change agent. Through her company, collaborations and partnerships, Jane is solving the problem of making women standard in male dominated industries like cyber, as she believes if you’re short on women, you are less safe, happy and prosperous. Having spent over two decades in cybersecurity, Jane has become one of the industry’s most celebrated female influencers and UNESCO has called her a trailblazing woman in tech. She started in tech by building her own hacking firm in the late 90s but has also worked as a senior executive for world renown consultancies. She regularly shares her thought leadership in the media, including the top broadsheets, at events, as a university guest lecturer and board adviser. She is known for spotting trends, bringing teams together for mutual wins, solving root problems fast, plus all the work she does with women. She is driven by her three children, an obsession to deliver outstanding quality and to make a positive difference in the world.

As leader of Fivecast, Brenton is responsible for driving innovation in the security industry through the application of world leading data science techniques to the field of open-source intelligence (OSINT). Brenton was formerly CTO of the Data To Decisions CRC, a $100 million collaborative research initiative to address data analysis challenges facing Australia’s national security agencies. This work led to the formation and spin-out of Fivecast, where he and the team are working toward their mission to enable a safer world by providing digital intelligence solutions that help protect global communities. Brenton has a Ph.D. in neural networks and his 20+ year career spans technology and management roles for companies including BAE Systems, Tenix Defence and Motorola.

Liam RYAN is the CEO of GM Risk Group, a Intelligence Solutions and High Risk Consultancy firm with its Head Office in Australia and entities in both The US and Netherlands. He  has 15 + years industry experience ranging from operational surveillance, close personal protection and logistics in high risk and conflict zones around the globe, to executive security and risk management, corporate advisory and the provision of complex security solutions for large multinationals and ultra-high net worth entities.

Operational experience though out Australia, South East Asia, North, East, South and West Africa, the Americas,  Middle East and most recently Ukraine.

Liam has recently returned after multiple deployments in Ukraine where GM Risk Group have been providing Security Advisory, Logistics, Close Protection and Emergency Management for media clients covering the ongoing conflict with Russia.

Liam and GM Risk Group first deployed to Ukraine in early January 2022, and in the following months had over 15 teams across the country. They maintained a presence since and have also been providing civilian evacuations, safe access for NGO’s and supply chains of aid.

Helen Hamilton-James has over 28 years of experience providing assurance and advisory services to clients across many sectors in Australia, Papua New Guinea and the UK. Having started her career as a graduate in Deloitte’s London office, Helen moved to Sydney in 1997 as part of a global development program.

Since becoming Partner in 2004, Helen has held multiple leadership roles including Office Managing Partner for Papua New Guinea, Chief Operating Officer of Deloitte Private and Assurance and Advisory Leader in Deloitte’s Western Sydney and Canberra offices.

In her current role as Office Managing Partner for Western Sydney, Helen is a passionate advocate for the region and all that it has to offer. She is focused on providing exceptional service to our clients across the area and creating a great place to work for partners and employees based in our Western Sydney office.

Outside of work, Helen is currently a non-executive director serving on the boards of SDN Children’s Services and Good360 Australia

Stephen is a proven sales and business leader with over 15 years’ experience in cloud-based IT. He has led high growth businesses in both North America and ANZ from small to enterprise software organisations

His passion and ability to recruit, motivate and lead extraordinary teams is the key to consistently exceeding business goals. His leadership style is a transparent and consultative approach that focuses on driving value for the customer first and working from the front lines with his team. In every engagement from clients, to partners and colleagues, he demands high ethics and integrity each step of the way.

Within Zscaler, Steve helps organisations secure their business, clients, and staff with world-leading technology.

Access the report here: 2022 VPN Risk Report Industry report by Cybersecurity Insiders

Mike Johnson joined Fastly as Chief Information Security Officer in 2019 and has more than 20 years’ experience in the security industry having previously been CISO at Lyft and at Salesforce for nine years where his leadership was instrumental in building and growing the company’s detection and response organisation. At Fastly, Mike is focused on supporting the company’s mission to build a more trustworthy Internet and bolstering security alongside performance, scale and edge functionality as the company continues to grow its edge computing offerings.

Mark Guntrip leads cybersecurity strategy at Menlo Security. He brings over twenty years experience in the enterprise security market where, through a range of roles including engineering, product management and product marketing. He has a proven track record of building success in new markets as well as promoting growth within more established areas. Prior to Menlo Security, Guntrip held various management roles within companies including Proofpoint, Symantec and Cisco. Guntrip earned his Master’s degree in Electronic Engineering from Southampton University, UK.

Rosie Anderson has worked in tech recruitment since 2002, and cyber security recruitment for over 7 years. After having a second baby right at the start of the pandemic, she decided to leave a stable career in recruitment and joined a start up recruitment business in Manchester, called Honeypot Digital at the beginning of 2021.

Rosie prides herself on being open and transparent, which sometimes means asking tough questions – either about a person’s career or about a company hiring process and culture. Having worked in recruitment for two decades now, Rosie has built many successful relationships with companies and candidates and looks to share her advice on how to get recruitment right and how to avoid costly mistakes.

Businesses need great talent management to grow, and Rosie looks to partner with her customers to be that integral function of their business, often representing clients and candidates exclusively. She strives to not only resolve recruitment and career challenges but to safeguard both parties interests and deliver real solutions while doing so.

As a working parent, working working in a start-up Rosie knows how to juggle like the best of them. She also heads up the Industry Mentoring Programme for Capslock, a cyber training provider that retrains adult learners into future cyber security talent in as little as 16 weeks.

ALTON JOHNSON
Founder & Principal Security Consultant

Alton Johnson is the Founder and Principal Security Consultant for Vonahi Security. Prior to Vonahi Security, Alton worked at several large and small cybersecurity consulting firms as a Principal Security Consultant. Throughout his professional career, he has performed hundreds of security assessments for organizations ranging from small businesses to Fortune 10. He is proficient in performing both traditional security assessments, such as network, physical, and application penetration testing, as well as advanced security assessments, such as red team engagements.

With over a decade of experience as a security consultant and over 10 industry-related certifications, Alton has helped hundreds of organizations requiring unique, modern-day approaches to solve today’s most complex security challenges. 

As the Founder of Vonahi Security, Alton regularly conducts research to identify ways to help organizations combat ever-changing cyber threats through efficient, automated, cost-effective, and non-traditional security assessments.

Notable Accomplishments

Alton has developed several penetration testing tools and scripts that are used widely within the information security industry. Alton also developed and published several open-source tools to platforms such as GitHub, Metasploit Framework, as well as Kali Linux (formerly known as Backtrack Linux), all of which are the most recognized and used tools and operating systems within the information security consulting industry.

The penetration testing tools that were developed by Alton were written in multiple scripting languages, which provides him the ability to quickly and efficiently develop exploits and scripts that can be used for network traffic analysis, protocol/service fuzzing, exploitation, and quick completion of extremely time-consuming network-related tasks.

Certifications & Training

Alton successfully obtained some of the industry’s most challenging and respected security certifications, including Offensive Security Certified Expert (OSCE), Offensive Security Certified Professional (OSCP), as well as eLearnSecurity’s Certified Professional Penetration Tester (eCPPT). He also regularly attends information security conferences and has spoken at DerbyCon, Podcasts, and local community events.

Areas of Expertise

Cybersecurity, automated penetration testing, vulnerability research, exploit development, coding, cryptography, malware, phishing, social engineering, and technology innovation.

Non-Hacking Hobbies

Aside from cybersecurity, Alton is also a car enthusiast. He enjoys modifying and racing his car on the tracks. He’s also into photography, especially automotive photography, and shooting pool as often as possible.

Connect with Alton

Email: [email protected]

Website: www.altonj.io 

Linkedin: https://www.linkedin.com/in/altonjx/

Twitter: https://twitter.com/altonjx

Thomas Kinsella is the Co-founder and COO of Tines, a no-code automation platform for security teams. Before Tines, Thomas led security teams in companies like Deloitte, eBay, and DocuSign. As COO, Thomas is responsible for customer success, professional services, and more. Thomas has a degree in Management Science and Information Systems Studies from Trinity College in Dublin.

Dave is an accomplished executive with a strong affinity for technology and a keen business sense for the application of emerging solutions. He has a proven talent for identifying core business needs and translating them into outcomes.

Prior to joining Haventec, Dave spent ~20 years at Accenture where he occupied a number of geographic leadership, account leadership and delivery leadership roles including Managing Director for Accenture Digital (AU and NZ), Inclusion and Diversity Lead (AU), Capital Markets Lead (AU) as well as Client Leadership roles for a number of Accenture’s Financial Services clients.

Prior to joining Accenture, Dave spent five years at the Australian Stock exchange in a number of roles including the Internet and Information Security Lead.

Elliot Dellys (PCI QSA, CISSP, CISM, CIS LA) is the founder and Chief Realist (CEO) of Phronesis Security, Australia’s first B Corp certified cyber security consultancy, with a mission to do ‘cyber security for good’. Previously, Elliot worked for the Australian Signals Directorate and a global managed service provider, where he led the Strategic Consulting division across the Europe, Middle East and Africa region. Elliot is also an industry-recognised information security content publisher, with articles appearing in Computerworld, CSO, Australian Cyber Security Magazine, and InfoSecurity Magazine, covering topics such as cyber security in diplomacy, threat forecasts, and the challenges of coordinating cyber security efforts across government and private industry.

Daniel Hood is the Chief Optimist (CTO) at Phronesis Security, Australia’s first B Corp certified cyber security consultancy. But more importantly, when Daniel isn’t helping organisations build secure architectures or sitting on the boards of charities, he is playing hockey in his tuxedo for nachos. A former Director for a global MSSP, Daniel has seen it all – from misconfigured security technology to out-of-control cyber incidents to misspent budgets. As the Chief Optimist, Daniel runs the Penetration Testing and Security Architecture teams and believes deeply in helping his clients reduce wastage and headaches. He has been in the industry for over a decade in a variety of roles, ranging from network security engineer for Australia’s largest network to a security architect performing an uplift to the cyber security of a few small nation’s governments.

Shishir Singh is the Executive Vice President and Chief Technology Officer for the BlackBerry Cybersecurity business. A seasoned senior executive, Shishir brings 15+ years of cybersecurity leadership. With his wealth of experience and expertise, Shishir works across the entire organization to set a clear vision roadmap for our next-generation cybersecurity products and services. He engages with our customer base on strategic direction, and identify key partnerships to implement a market-winning technical strategy and vision. Shishir is a passionate advocate for customer-centric design and the use of data and analytics to create compelling offerings that thrill customers.

Before BlackBerry, Shishir served as Senior Vice President and Chief Product Officer, Enterprise Business Group at McAfee. In this role, he was responsible for product strategy, execution, and delivering cutting-edge cybersecurity offerings that protect Enterprise customers from threats to their applications, networks, data, devices, and other critical assets. During his tenure, he transformed the company into a true cloud company and pioneered the teams that delivered McAfee’s XDR, CNAPP, and SASE (Unified Cloud Edge) solutions in the industry. These products are offered in both on-premises and cloud form factors. They have a footprint across the entire gamut of industry segments, ranging from fledgling start-ups to established banks, Fortune 500 Enterprises, and federal institutions across the globe.

Shishir has also held various engineering, development, and product leadership positions at Cyphort (acquired by Juniper), Cisco, IronPort Systems (acquired by Cisco), Bluecoat Systems (acquired by SYMC/Broadcom), and Silicon Graphics. At the onset of his career, Shishir worked for the Defense Research and Development Organization, (DRDO), a public service undertaking that develops advanced avionics systems for India’s vast defense sector. He was nominated for the Young Scientist of the Year award for his contribution to the indigenous AWACS project for India.

Shishir holds master’s degrees in Computer Science from Allahabad University and Electrical Engineering from the Indian Institute of Science, Bangalore, India. Additionally, he has published and presented multiple academic papers for IEEE and holds several patents in the fields of Neural Networks, Artificial Intelligence, and behavior-based modeling for malware analysis. Apart from his boundless passion for his work, in his free time, Shishir enjoys keeping himself active. He loves hot yoga, playing squash, and hiking.

Chrystal Taylor is a dedicated technologist with nearly a decade of experience and has built her career by leveraging curiosity to solve problems, no matter the size, industry, or client. Whether tinkering with the family computer, or inflicting general destruction in MS-DOS Tank Wars, Chrystal has always been a geek.

Chrystal is a SolarWinds deployment veteran who’s built a successful IT career by translating client needs into optimised and performant systems. She loves customising current deployments to ensure systems grow in tandem with user needs. She’s achieved several SolarWinds certifications. A THWACK^® MVP since 2011, she understands the power of community and the SolarWinds commitment to its users.

Remy is a blue team cyber security expert with a decade of experience in Federal Government, Private Sector, Law Enforcement, and the Military. He holds a Diploma in Networking, and a Diploma in Systems Administration. He is a GIAC certified security leader, ISO 27001 lead auditor, and IRAP assessor #194.

Remy has been awarded a commendation for his cyber training programs, commanded the first Army Cyber Protection Team, and MC’s the ADF Cyber Skills Challenge conference every year. He studied Acting at Victorian College of the Arts and has performed in theatres nationally. Every training program, workshop, or presentation that involves him is always more engaging and entertaining than anything involving cyber security has the right to be.

Find Remy on Linkedin: https://www.linkedin.com/in/remy-coll-809946203/

Simon is a red team cyber security expert with experience in National Intelligence, the Military, and Law Enforcement. He holds a Master of Cyber Security (Advanced Tradecraft) with Excellence from UNSW ADFA. He is an OSCP, eCPPT, a GIAC certified security leader, GIAC certified systems auditor, and IRAP assessor #1308.

A former NSW Police officer, Simon has worked in counter-terrorism & special tactics, investigations, and digital forensics. More recently, Simon has been working directly for the Australian Government within the National Intelligence Community. He has spoken at a number of cyber security conferences, on both technical subjects and case studies on technical investigations, and is a mentor on the ADF Cyber Gap Program.

Find Simon on Linkedin: https://www.linkedin.com/in/simon-smalley-b673a2233/

Torsten George is currently a cyber security evangelist at Absolute Software, which helps organizations establish resilient security controls on endpoints. He also serves as strategic advisory board member at vulnerability risk management software vendor, NopSec. He is an internationally recognized IT security expert, author, and speaker. Torsten has been part of the global IT security community for more than 27 years and regularly provides commentary and publishes articles on data breaches, insider threats, compliance frameworks, and IT security best practices. He is also the co-author of the Zero Trust Privilege For Dummies book. Torsten has held executive level positions with Centrify, RiskSense, RiskVision (acquired by Resolver, Inc.), ActivIdentity (acquired by HID® Global, an ASSA ABLOY™ Group brand), Digital Link, and Everdream Corporation (acquired by Dell).

Edgard Capdevielle is President, CEO and co-founder of operational tech and IoT firm Nozomi Networks. Edgard brings an extensive background in successfully managing and expanding markets for both start-ups and established technology companies to his role as CEO. Previously he was Vice President of Product Management and Marketing for Imperva, where he led teams that made the company’s web and data security products leaders in their space. Prior to that he was a key executive at storage companies Data Domain and EMC.

Lena joined MongoDB in March 2019, with more than 20 years of cybersecurity experience. Before joining MongoDB, she was the Global Chief Information Security Officer for the international fintech company, Tradeweb, where she was responsible for all aspects of cybersecurity. She also served as CIO and Chief Security Officer for the New York Power Authority, the largest state power organization in the country. Lena is a founding member of Cybersecurity at MIT Sloan, formerly the Interdisciplinary Consortium for Improving Critical Infrastructure Cybersecurity, which allows security leaders in academia and the private sector to collaborate on tackling the most challenging security issues. Lena is a member of IT-ISAC, frequently speaks at industry events and has been featured in Fortune, Dark Reading and CSO Online.

Sean is the Regional chief security officer for Asia Pacific and Japan at Palo Alto Networks. In this role, Sean spearheads the development of thought leadership, threat intelligence and security best practices for the cybersecurity community and business executives.
With more than 20 years of experience in the IT and security industry, he acts as a trusted advisor to organisations across the region and helping them improve their security postures and align security strategically with business initiatives.

Prior to joining Palo Alto Networks, he spent 15 years in a variety of roles at Intel Security (McAfee), with his last position as the Chief Technology Officer for Asia Pacific. Before this, Sean was involved in software development, technical support and consulting services for a range of Internet security solutions.
Sean actively discusses security issues in mainstream media, including television, radio, print and security related broadcasts. He regularly participates in forums, conferences and panels, and provides intelligence on cybersecurity matters to the public and private sector.

Dan Woods is the Global Head of Intelligence at F5. Prior to F5, Dan spent more than 20 years with local, state, and federal law enforcement and intelligence organizations including the FBI as a special agent and the CIA as a cyber operations officer.

See also:

• I’m a former CIA cyber-operations officer who studies bot traffic. Here’s why it’s plausible that more than 80% of Twitter’s accounts are actually fake—and Twitter is not alone.
• Former FBI Agent Confirms Elon Musk’s Claim of Undercounting Bot Accounts on Twitter by Conducting His Own Research

Nathan Wenzler is the Chief Security Strategist at Tenable, the Cyber Exposure company. Nathan has over two decades of experience designing, implementing and managing both technical and non-technical security solutions for IT and information security organizations. He has helped government agencies and Fortune 1000 companies alike build new information security programs from scratch, as well as improve and broaden existing programs with a focus on process, workflow, risk management and the personnel side of a successful security program.

As the Chief Security Strategist for Tenable, Nathan brings his expertise in vulnerability management and Cyber Exposure to executives and security professionals around the globe in order to help them mature their security strategy, understand their cyber risk and measurably improve their overall security posture.

See also: 2022 Ponemon Cost of Insider Threats Global Report

Dane’s first business adventure was at aged 18 where he developed and sold digital information products from his home, via online stores. This experience gave Dane a taste for business and pursued a career in sales. After several years in the recruitment and pharmaceutical sectors, Dane relocated to Australia and entered the cybersecurity industry with an early cloud provider called MessageLabs.

Dane played a key role in MessageLabs becoming the market leader in Australia, earning regular accolades along the way, including “global top performer”.  In this role, he worked with senior IT executives from many of Australia’s largest businesses to secure their network from cybercrime.

In 2014, Dane identified a gap in the market in the way organisations were addressing security management and co-founded InfoTrust. InfoTrust are a specialised cybersecurity practice, that supports their clients to become secure and more productive.

InfoTrust has evolved to over 40 staff to develop deep expertise that combines internally developed products, professional services, managed services and third party technologies, across a range of cybersecurity domains.

In 2021, InfoTrust split off a SaaS platform project to incorporate MyCISO. MyCISO simplifies the journey for organisations and their IT providers to assess, improve and manage their cybersecurity improvement journey.

As at July 2022, the MyCISO team consists of 12 staff made up of Product and Software Engineers (9) Operational (2), Sales and Pre-Sales (2).

Dane is married, a father to 3 children and lives between Sydney and a farm in the hunter valley.

Dr. Arun Vishwanath studies the “people problem” of cybersecurity.

His research focuses on improving individual, organizational, and national resilience to cyber attacks by focusing on the weakest links in cyber security—Internet users.

His particular interest is in understanding why people fall prey to social engineering attacks that come in through email and social media, and on ways we can harness this understanding to secure cyberspace.

Dr. Vishwanath is an alumnus of the Berkman Klein Center at Harvard University.  He was a tenured associate professor at the University at Buffalo and was faculty at Indiana University, Bloomington.  He serves as the CTO of Avant Research Group (ARG)—a Buffalo, New York based cyber security research and advisory firm, where he consults for major corporations and government agencies on issues ranging from cybersecurity to consumer protection. He also serves as a distinguished expert for the NSA’s Science of Security & Privacy directorate.

Dr. Vishwanath’s research on improving cyber resilience against online social engineering has been funded by the National Science Foundation. He has published close to 50 articles on technology users and cybersecurity issues and his research has been presented to principals at national security and law enforcement agencies around the world. He has also presented his work at leading global security conferences, multiple times by invitation at the US Senate/SSA and House, as well as four consecutive times at BlackHat.

Here’s the link to the book and the discount code. Anyone ordering the book with a US address can get 15% off The Weakest Link when you enter the discount code “READMIT15” here:

The Weakest Link by Arun Vishwanath: 9780262047494 | PenguinRandomHouse.com: Books

Alastair has spent the last 20 years working in Cyber Security and Risk Management. He is a passionate believer that security solutions should enable a business to take advantage of all the benefits of the digital world, while not putting the organisation’s data or productivity at risk.

From working within start-ups to established vendors Alastair has the knowledge to launch and grow markets for technology that cuts through the noise to recommend a methodology that really moves his clients forward, maturing the approach they take.

Having 4 children means he knows what it takes to keep teams focused on the right challenges to delight their customers every day. Building trust at all levels is crucial to this success.

Helping to de-mystify the Cyber market is Alastair’s a key objective, as he believes it can only help the cause if we work together and share intelligence to keep the bad guys out and businesses operating smoothly.

Sarah Sloan is the Head of Government Affairs & Public Policy for Australia and New Zealand at Palo Alto Networks. She advises the company’s leadership on a range of cyber and technology policy/regulatory issues, builds strategic relationships across all tiers of government and acts as a trusted private sector adviser to governments in the region.

Prior to her role with Palo Alto Networks, Sarah worked at Accenture Security on a number of government projects and quickly developed a formidable reputation for delivery and stakeholder management in challenging and nationally significant programs..

Sarah has spent 10+ years working in the Federal Government, predominantly in cyber crime and cyber security. She has a proven track record of delivering results at the operational and strategic levels of government and is passionate about improving Australia and New Zealand’s cyber security posture.

Sarah is a graduate of the Australian National University with a Bachelor of Laws (Hons.) and Bachelor of Asia and the Pacific Studies. She also holds a Graduate Diploma of Asia and the Pacific Studies (Japanese), Graduate Diploma of Legal Practice, and a Master of International Laws, where she wrote her thesis on international norms and cyber security.

Sarah is Chair of the Australian Information Industry Association (AIIA) Cyber Security Policy Advisory Network and is an elected member of the AIIA ACT/Federal Council. She is also a member of the AmCham Digital Economy and Innovation Committee.

Chad Skipper serves as global security technologist at VMware. With more than 25 years in information security, Chad has served in many executive security technologist and strategist roles of endpoint, network, cloud, and hosted security services at Lastline, acquired by VMware, Cylance, acquired by Blackberry, Dell, Cisco, Symantec and is a USAF veteran.

Nick Boyle is a partner in the IP & Technology team at DLA Piper, and is based in Sydney. He advises clients on data protection and cyber-security related matters, as well as digital transformation, IT procurement and implementation and other complex procurement projects.  Nick’s clients range from start-up companies, to large listed and private Australian corporations, to multi-national organisations.

Nick has experience and expertise in advising clients on issues arising in connection with the Privacy Act 1988 (Cth) and State and Territory privacy legislation, including in relation to the collection, use, processing and cross-border transfers of data, cyber security risks and mitigations. This includes assisting clients in navigating these issues in both pre- and post-incident scenarios and information and security related regulatory issues, including as part of digital transformation and BPO projects and in response to cyber incidents.

Jason Van der Schyff is Chief Operating Officer of slightly controversial, quietly confident’ venture-backed company SoftIron – a global leader in purpose-built and performance-optimised data centre solutions.

SoftIron is about to change the game when it comes to Australian business and government cyber control of sensitive data (and better storage of massive amounts of data).

Soon this year, SoftIron will be launching the first-ever base-level computer manufacturing facility on Australian soil. The facility is set to supply ‘clean’ computer servers for firms and government agencies needing assurance there is no malicious or unknown code in their data centres. SoftIron builds and manufactures hardware designed with totally-auditable provenance. SoftIron is the only company in the world that provides fully auditable processes.

Jason brings both technical and operational experience to SoftIron having previously held roles in R&D engineering, sales and marketing roles with Heliox Technologies, James Fisher Defence and a number of early-stage Silicon Valley companies.

With extensive manufacturing experience both domestically and abroad in both consumer and B2B high volume products, Jason leads SoftIron’s efforts in vertically integrated manufacturing and domestic assembly.

Jason recently published his first book, Asymmetric Advantage, available for purchase physically and digitally.

Ashkan Tashvir built and launched the first of several businesses at the age of fifteen and subsequently led a series of businesses to become thriving and successful enterprises across various industries. With a master’s degree in information systems management, he was amongst the youngest Certified Microsoft Trainers at the time and has worked on various technology projects for government bodies and a range of sectors, including legal, finance and hospitality. During this time, his interest in business and entrepreneurship continued to evolve and he led or advised several startups and SMEs to become sustainable, scalable ventures before becoming an investor and venture builder himself.

In addition to his extensive business and technological engineering qualifications and experience, Ashkan is a deep thinker, voracious reader and philosopher with a profound interest in and knowledge of Western and Eastern philosophy.

For more than a decade, he was driven by a quest to discover why there is so much dysfunction and suffering in the world and to find the answer to a burning question, ‘Why are we human beings the way we are and what drives our decisions, behaviours and actions?’ His quest led him to a crossroads between the realms of technology, business, leadership and philosophy.

Observing a distinct lack of logical, ontological and systematic thinking in the areas of human consciousness, transformation and leadership, particularly in terms of how they empower people to generate opportunity and wealth for themselves and others, Ashkan set his mind to using his newly discovered knowledge to devise a series of practical frameworks, tools and methodologies, one of which is the Being Framework™. The framework is laid out in his best-selling books BEING and Human Being.

This framework, which incorporates the Being Profile® assessment tool and the Transformation Methodology™, is now supporting people from all over the world to create significant economic and social benefits in their organisations and personally derive fulfilment from their contribution in life. He has since also designed and built the Genesis Framework™, a revolutionary business venture building paradigm.

Anthony Woodward –  Chief Executive Officer, Founder & Director | Mentor & Advisor | Digital Transformation | Cloud | Growth | M&A

For more than 25 years, Anthony has built, scaled and run technology companies in the internet and cloud services space. By helping businesses to understand how to use technology to advance strategic objectives and enable performance, he has converted game-changing market opportunities into leading businesses as a CEO, Executive Director and Entrepreneur.

Leveraging access technologies to create Zip World in 1995, the market-leading retail and wholesale provider was sold to NASDAQ listed Pacific Internet (now Telstra) in 1999. He then founded Bulletproof, which he grew to be the leading end-to-end Cloud Services provider in ANZ, took public through a listing on the ASX in 2014, and led a rapid growth trajectory to c.$50m revenues in FY17 before its acquisition by AC3 in 2018. Anthony joined Logicalis Australia in July 2021, as Chief Executive Officer.

Tony Jarvis

Director of Enterprise Security, Asia Pacific Japan

Based in Singapore

Tony Jarvis is a CISO advisor and cybersecurity strategist who has advised Fortune 500 clients across the world and served as a thought leader within the industry. Tony has held a variety of leadership and advisory roles with leading brands such as FireEye, Standard Chartered Bank and Telstra, and has an acute understanding of how to successfully deliver cybersecurity engagements which strategically align with business objectives. He is passionate about educating audiences on the risks posed by modern cyber threats and advises business leaders as they undertake major cybersecurity transformation projects and initiatives. Tony holds a BA of Information systems from the University of Melbourne.

See also: Guarding Against Foreign Interference

Scott Fletcher is a Cloud Security Engineer at Oracle. His background includes Penetration Testing, Software Development & Security Consulting. He has also held Principal Consultant roles in both Australia & New Zealand, and worked for a number of enterprise and financial services organisations.

In an IT career spanning two decades across a range of technical implementation, architecture and leadership roles for some of Australia’s most recognised brands, Tom Walker has established a reputation for delivering the improbable whilst embedding significant and impactful organisational change on the teams he has led. An advocate for a security first culture, Tom takes a pragmatic approach to transformation, and always challenges the status quo believing “better” is only a transient state to “best”.

Scott’s LinkedIn | Oracle
Tom’s LinkedIn | Kelima

Alan is a highly confident, effective and adaptable leader, manager & team player, with some 30 years experience in all facets of security, particularly cyber and enterprise security risk management, with a focus on ‘value-at-risk’. Currently, Alan is the Director of Advisory Services for Decipher Cyber, where he works with founder Tinesh Chhaya to grow their business and deliver quality outcomes at a reasonable cost based on the value of change required in a transparent manner.

During his career as a senior RAF Police officer, he has accrued extensive operational exposure in the UK & overseas, in both multi-national & multi-agency environments, against the backdrop of a broad threat spectrum & across all 3 of the so-called physical, personnel & information security pillars.

Since leaving the RAF in 2006, he has added management consulting plus business development, delivery & pre-sales experience in both Public & Private sectors in the role of a Trusted Advisor & SME. After spells at CSC & T-Systems as UK Chief Security Officer and being responsible for end-end security governance, operations and risk, he joined Babcock International Group as their first CISO in 2013. He led the delivery of significant improvements in the Group’s cyber security capabilities to the benefit of the wider business & its customers. After a year as an Independent, he later joined IBM Security in 2015 as an Associate Partner leading activities in the UK’s FinSvces Sector, where he also led the delivery of a £multi-million security workstream as part of a £1.2 billion contract with a Tier 1 Bank. He returned to freelancing in 2018, working through Cybercorre & then joining a start-up, Guardian Cyber Services, in 2019, before landing an all-too-brief role at 2-Sec Consulting. He has been on contract to Hitachi Europe’s Security Business Group since October 2019 and has also been CISO-in-Residence at CyLon Labs since March of even year, supporting 2 Cohorts of startup/scale ups and supporting a CyLon Spark workshop in Oman in 2020.

Kylie is the Lead Client Partner for Defence and National Security in Australia and New Zealand at IBM with the remit to helping solve some of the nation’s more complex national security problems with consulting specialities in data, AI, automation, cyber security, hybrid cloud, openshift, innovative technologies and agile processes. Kylie previously ran Cybersecurity for IBM Consulting as well as Hybrid Cloud and Cloud Security for all industries across A/NZ.  Prior to that she was a Risk Partner managing Cybersecurity and data analytics for government clients at Deloitte and a Lead Client Partner for Defence on Risk.

Kylie has a strong interest in human behaviour in regards to technologies including users and cyber criminal behaviour, and regularly advises clients on strengthening security based on her insights. She is both a Sociologist and a Technologist with experience and degrees in sociology, management, cyber and data. She has advised and managed clients across Australia, New Zealand, South Africa, Thailand, Singapore, Malaysia, Japan and Korea with innovation, data management, advanced analytics and security.

Her insights into cyber warfare and criminal activity hinge on the human side of malicious attacks with an intent to determine the intent of the actors, degree of maliciousness and to help teams prepare their cyber defence (or level of offence). Kylie holds a top secret Australian government security clearance. On top of that she loves exploring why people are drawn to cyber crime.

Kylie has won awards for innovation, new products/services, business and community service and has a track record of leading large multifaceted teams of hundreds of people with deep technical expertise on technology projects and programs for consulting budgets as large as $300M+. In her spare time she is the Chair of a Charity Think Tank the National Institute for Strategic Resilience (NISR) that seeks to gather perspectives and encourage diversity of thought on national resilience and security policy…. and can be seen on the basketball court most weekends managing junior premier league teams, coaching, mentoring emerging coaches, and watching her children play.

Apurva Chiranewala is the General Manager of fintech company Block Earner, where he oversees global operations, growth and expansion, and builds strategic partnerships.

Formerly head of shipping at eBay and chief development officer at fast-growing logistics scale-up Sendle, Chiranewala has worked in a number of high-profile leadership roles at large corporations and startups alike.

As an early pioneer in eCommerce, Chiranewala has closely witnessed the disruption of traditional retail and shipping industries globally during his career first at Snapdeal, one of India’s earliest eCommerce unicorns, at Catch.com and Sendle here in Australia. Chiranewala foresees a parallel path of disruption happening now due to blockchain technology in the traditional finance space.

Chirag’s ambitious goal is simple—to enable human progress through technology. To accomplish this, he wants to help build a world where there is trust in digital systems, protection against cyber threats, and a safe environment online for communication, commerce, and engagement. He is especially passionate about the safety of children and vulnerable sections of society online. This goal has served as a motivation that has led Chirag to become a sought-after speaker and advocate at various industry-leading conferences and events. Chirag is respected as a thought leader in cyber security with keynotes and presentations at forums in United States, Australia, and Asia. His podcast features insights from distinguished professionals in a wide range of disciplines including media, entrepreneurship, executive leadership, and futurology.

He is the author of the highly successful book “7 Rules to Influence Behaviour and Win at Cyber Security Awareness” which has been purchased in over 11 countries across the world and became an Amazon Australia Best-Seller in its category.

During the course of his career spanning across multiple sectors and countries, he has built, implemented, and successfully managed cyber security, risk management, compliance, and awareness programs. The success of these programs was a result of unyielding focus on business priorities, a pragmatic approach to cyber threats, and most importantly, effective stakeholder engagement. Chirag has held senior leadership positions in large, complex organisations and excels at the art of translating business and technical speak in a manner that optimises value.

Chirag has also conducted several successful cyber security education sessions for executives and non-technical audiences in diverse industries such as finance, energy, healthcare, and higher education. He has led teams, managed multi-million-dollar budget and transformation programs. He has experience in both IT and OT environments, and leading cyber security through de-mergers and divestments.

Chirag has extensive experience with a wide range of standards, frameworks and regulations including NIST CSF, APRA CPS 234, AESCSF, PCI DSS, Health Insurance Portability and Accountability Act (HIPAA) and ISO 27001/2.

Chirag’s academic qualifications include a master’s degree in telecommunications management from Oklahoma State University and a bachelor’s degree in electronics and telecommunications engineering from the University of Mumbai. He holds multiple certifications, including Certified Information Security Manager, Certified Information Systems Auditor, Certified in Risk and Information Systems Control, and Certified Data Privacy Solutions Engineer.

His areas of expertise include strategic cyber advisory to executives, cyber risk management, cyber strategy and architecture, security and technology governance, cyber transformation programs and security awareness training.

Get a copy of 7 Rules to Become Exceptional At Cyber Security: A Practical, Real-world Perspective For Cyber Security Leaders and Professionals on Amazon and Chirag’s website.

With over 20 years experience in information technology, John is an accomplished consulting practice leader, management and sales consultant, published author and writer, global thought leader in information risk management and security, governance, risk, and compliance.  John addresses business, technology, and compliance issues on a global scale.

See also: ISACA Supply Chain Block Infographic

Starting his career in Army Signals, Andrew has spent the last 20+ years working across a variety of ICT roles. As a Technologist, with a passion for security Andrew has designed and delivered secure solutions across Government and Private organisations.

In his current role as the Director of AUSHIELD, Andrew leads Cybermerc’s technical teams to deliver sovereign cyber threat intelligence solutions along with protecting Australian organisations.

Andrew is regularly engaged for bespoke technical research and enjoys giving back to the industry through volunteer work and technical presentations at conferences.

William is an IT Professional and ISACA-certified Cyber Security Auditor with over 15 years experience in Networks and Information Technology across a broad range of industries including local government, insurance, public health, construction, automotive and commercial design.

William is the Cyber Risk Lead at InConsult, helping organisations to develop or improve their Cyber Resilience. In recent years, he has worked with a large number of Local Government Areas, State Government, Insurers and Health Insurers to assess maturity, aid in continual improvement and even develop complete frameworks from scratch in line with ISO 27001, APRA CPS 234 and the NIST Cyber Security Framework.

With a highly technical background, William provides a uniquely personal point of view having dealt with threats first hand. Through framework development, awareness training, phishing campaigns and much more, he is on a mission to help critical areas of Australian business better prepare rather than waiting around to respond.

Kevin Chen is one of the pioneer preachers of the Chinese blockchain industry and a well experienced international investor in the Fintech industry. He has achieved successful business investment and management experience in China, Malaysia, Hong Kong, Dubai and Australia. Kevin is the founder of Australia KJ Strategic Investment Pty Ltd and CloudTech Group and served as the Chief Strategic Officer of China Fortune Holdings Limited during 2017-2019 and the Financial Director of Country Heights Holding Berhad, Malaysia, from 2020-2022. As one of the most well-known institutional investors in the blockchain industry, Kevin is actively involved in project incubation and early investment. He has been an angel investor in many well-known projects, such as Binance, VeChain and aelf cloud network. After founding CloudTech Group in Dubai and Australia, he led the team to successfully establish the Blockchain World Summit and host the DCS 2021 summit in Dubai.

Jim Bates, PMP (certified Project Management Professional) is the founder, President and CEO of Business Improvement Group, Inc. (BIG) and an Adjunct Professor in several schools at the University of Alaska Anchorage (UAA), including the Master of Science in Project Management (MSPM) program. Jim has served in various volunteer roles with the Project Management Institute Alaska Chapter (PMIAK) Since 2011 and served as Chapter President from October 2019 through December 2021.

Jim’s vast career spans 40+ years with proficiencies in Business Management, Project Management, and Information Technology. Jim is a certified leadership coach with GiANT, a Lean Six Sigma Master Black Belt, and holds Master Certificates in Business Analysis, Lean Six Sigma, and Project Management from Villanova University. Jim has been published in CIO Review and Government Technology magazines among various other publications, and is a public speaker and renown expert on leadership, business process improvement, project management, and information technology.

Jim is an experienced executive and consultant who is passionate about leading business transformation and offering innovative, high-value solutions to everyday business challenges. He has a proven ability to successfully analyze an organization’s critical business requirements, identify deficiencies and potential opportunities, and align and integrate technology. He strives to help companies develop innovative and cost-effective solutions for enhancing competitiveness, increasing revenues, and improving customer service offerings.

Jim and his wife, Mechelle, (both life-long Alaskans) live in Eagle River, Alaska where they raised seven children. They now enjoy 15 grandchildren. Jim likes outdoor activities, woodworking, and reading. He enjoys giving back, and in addition to his contributions to local charities, has been involved in numerous missions to Africa and the Philippine Islands contributing to, promoting, and implementing quality-of-life improvement.

Asaf helps cyber security and SaaS companies land their first $1M ARR. Asaf has tackled this challenge for his own companies and multiple clients. He has co-founded education, software and telehealth businesses and is now working with Cyber security, InsurTech and automation startups in Israel, US and Australia. 

Struggling to get sales results in his startup in 2013, Asaf had to figure out that “marketing and sales thing”.  As a Major in the Israeli Air Force in a Cyber Security Unit, Asaf has learnt that nothing is done without proper intelligence. He quickly realised the current marketing and sales approaches lacked fundamental elements to be effective.

So he developed a framework that has allowed him to land for his own companies and his clients over $46M in revenue, win multiple awards and unlock growth for clients globally.

Asaf is the Co-Founder of Cannvalate, Managing Director of Ducere Global Business School, Faculty of Cyber (acquired), and is working with public and private companies globally.

Louay Saleh is a Cyber Security Senior Manager with more than 13 years of experience in the domain and overall experience of more than 21 years. When he was at his junior year at the university, Louay started to develop his passion for Cyber Security and realized that this is the field in which he wants to specialize.

Starting his career in the Software Development area and then moving to the IT Support and Operations, Louay was always aiming to advance his knowledge and experience in different IT areas in order to move to the Cyber Security. It was when he joined one of the Big 4 firms; Deloitte, that Louay was finally able to start working in that area. He worked in both Security Consulting and IT Audit; where he advised large customers mainly in the Banking, Financial, and Telecommunication fields. He then moved to Ernst & Young for a few months and similarly working with the same type of customers, before joining the National Bank of Egypt. Louay was responsible for building and leading the team in charge of the technical assessment activities such as the Vulnerability Management and Penetration Testing, in addition to the Incident Handling and Cyber Threat Intelligence. Louay considers those areas as his main specializations so he always tries to advance his knowledge and skills. A great deal of that is through doing the hands-on himself; whether during the work assignments or during the leisure time, as he always believes in building a good technical foundation and enhancing it whatever the job position one reaches. However, he also believes in balancing the technical expertise with the excellent leadership and business skills.

Louay acquired a few certificates such as GWAPT, CISSP, CISM, CRISC, and C|EH, and attended many hands-on trainings. Louay is also a seasonal Capture The Flag (CTF) player.

Lachlan Feeney is the Founder and CEO of Labrys – Australia’s leading provider of blockchain development and consulting services. Lachlan founded Labrys out of his bedroom at the age of 19. He was an early adopter of cryptocurrencies and blockchain technology and immediately realised the potential to build a better, more democratised future, with the technology. Labrys has worked with ASX listed Downer EDI, The Government of the Solomon Islands and global blockchain platform NEM Group, among others. Lachlan is on a mission to turn Labrys into a global blockchain-consulting authority as the technology moves further into the mainstream. Prior to starting Labrys, Lachlan has worked as a developer at fellow blockchain agency; Civic Ledger and as a cryptocurrency researcher at the Student Trading and Investment Association. Lachlan is also a co-author of The Handbook of Board Governance (2nd Edition).

Satnam Narang is Staff Research Engineer at Tenable with over 14 years of experience in the industry (M86 Security and Symantec). He contributed to the Anti-Phishing Working Group, helped develop a Social Networking Guide for the National Cyber Security Alliance, uncovered a huge spam botnet on Twitter and was the first to report on spambots on Tinder.

He’s appeared on NBC Nightly News, Entertainment Tonight, Bloomberg West, and the Why Oh Why podcast.

Marilise de Villiers, Founder & CEO, ROAR! Coaching & Consulting.

Marilise is a Performance Coach, Best-selling Author, TEDx Speaker & award-winning Behaviour Change Consultant that specialises in Finance, Technology & Cyber Security Awareness, Culture & Talent. She’s a podcast host, international keynote speaker & regular podcast guest.

ROAR! is passionate about people living successful, healthy, and happy lives. It’s about making your whole life work and becoming your whole self.

Marilise combines over two decades of experience as a chartered accountant and change consultant in finance, audit and cyber security awareness, culture and talent. She’s led the design and roll-out of global behaviour change programmes in consulting, research and operational delivery roles, across a broad range of industries and disciplines. Over the last decade, she’s been specialising in addressing cyber security behaviours and culture, encouraging organisations to move away from compliance-led‚ tick box approaches, towards risk-based, people-centric approaches that embed secure mindsets and habits into organisational culture. She emphasises the need for a speak-up culture that allows suspicious behaviour and mistakes to be surfaced and addressed.

Marilise’s coaching curriculum is science backed and centred on the strategies and thought processes of the world’s highest performers. It focuses on clarity, energy, courage, productivity, influence, and purpose.

Her signature ROAR! Blueprint is designed to:

1. Ignite your authentic purpose
2. Win your inner game (thoughts, feelings)
3. Win your outer game (words, actions)
4. Unleash your authentic voice – your ROAR!

ROAR is a four-step process to having courageous conversations – with others and with yourself. It stands for Recognise, Observe, Assert, Redirect.

Marilise is South African-British, married to Heinie and they have two boys, Heinrich (14) and Andreas (12).

Her motto is: work hard, play hard & be kind.

Shinesa Cambric (CCSP, CISSP, CISA, CISM, CDPSE) is a Cloud Security, Compliance, and Identity Architect with strategic expertise in technical design and implementation of security architecture and controls. Her experience includes designing identity management and governance solutions for cloud-based platforms, building insider threat programs, and providing unique subject matter expertise on the intersection of governance, risk, and compliance with IT and application security. 

As a Principal Program Manager within Microsoft’s Intelligent Protections team,  Shinesa currently focuses on architecting solutions for global organizations to identify, detect, protect, and respond to threats against identity and access. She is a task and certification content advisor for CertNexus and CompTIA, on the content review committee for Cloud Security Alliance, and her work has been included in global IT industry forums such as SANS, ITSPMagazine Podcast, RSAC, BrightTALK, Secure Software Summit, Devops.com, and Plan4Privacy.  As an active mentor, she volunteers with several organizations, including as the training lead for the Dallas chapter of Women’s Society of Cyberjutsu.  Shinesa is an active member of several other organizations, including Cloud Girls, Women in Cyber Security (WiCyS), ISACA, ISC2, Information Systems Security Association (ISSA), International Association of Privacy Professionals (IAPP), and AnitaB, and serves as an occasional host for the OWASP DevSlop YouTube and Twitch show.

Ian is a veteran in the security industry stretching back to the early 1990’s. He began with the UK Ministry of Defence before moving into the dot com bubble. Having spent 5 years with a leading security vendor he began his life as an entrepreneur offering contracting services to major industries and government departments. His new venture now breathes life into the dull world of security awareness. Mixing his blend of humour and vast experience his aim is to raise everyone’s cyber savvy so they can enjoy a safer online experience.

Bob Huber, Chief Security Officer and Head of Research, Tenable

Rebecca Herold, CDPSE, FIP, CISSP, CIPM, CIPP/US, CIPT, CISM, CISA, FLMI, Ponemon Institute Fellow, has over 25 years of IT, info sec, & privacy experience; CEO & Founder (2004) of Rebecca Herold, LLC, aka The Privacy Professor(R); CEO & Founder (2020) of Privacy & Security Brainiacs; and host of the radio/podcast show “Data Security & Privacy with the Privacy Professor“. Founder (2014) & Engineer/Architect, and Owner of all IP for content, specifications and architecture of SIMBUS, LLC and all derivatives thereof.

Rebecca is an entrepreneur, author & was an Adjunct Professor for the Norwich University Master of Science in Information Security & Assurance Program for 9 years where she also created program curriculum. Rebecca led the NIST Smart Grid privacy group for 7 years and is a founding member of the IEEE P1912 Privacy and Security Architecture for Consumer Wireless Devices Working Group (June 2015). Rebecca has received numerous awards and recognitions for her work throughout the course of her career. Rebecca has is currently finishing her 20th published book to date, plus chapters in many books and hundreds of articles. Some of Rebecca’s books include:

• Security & Privacy when Working from Home & Travelling
• The Practical Guide to HIPAA Privacy and Security Compliance (2 editions)
• Data Privacy for the Smart Grid
• The Privacy Papers
• Managing an Information Security and Privacy Awareness and Training Program (2 editions)
• Link to ISACA report: Privacy in Practice 2022

Rebecca has a B.S. in Math & Computer Science & an M.A. in Computer Science & Education. Rebecca is a longtime member of ISACA, Infragard, IAPP, ISSA, (ISC)2, IEEE & ACM.

Satnam Narang is Staff Research Engineer at Tenable with over 14 years of experience in the industry (M86 Security and Symantec). He contributed to the Anti-Phishing Working Group, helped develop a Social Networking Guide for the National Cyber Security Alliance, uncovered a huge spam botnet on Twitter and was the first to report on spambots on Tinder. 

He’s appeared on NBC Nightly News, Entertainment Tonight, Bloomberg West, and the Why Oh Why podcast.

Peter advises CISOs on how to increase their business’s Cyber Resilience by transforming their Cybersecurity landscape. Peter is similarly passionate about building high performing teams with an emphasis on people and culture. To achieve this, he relies on his three key strengths: leadership, logic and numbers.

Peter has been fortunate enough to hold senior leadership positions in both the Cybersecurity and Applications industries. This has given him experience on how organizations function and what applications enable this, together with the inherent Cybersecurity risks that exist from infrastructure through to core business and client facing applications.

Peter is at his best when given the opportunity to overcome a challenge, together with the resources, space and support to get it done.

Russell is a seasoned and respected Information Technology leader with over 20 years of experience who has held leadership positions globally, including the USA, China, Europe, and the UK.

He holds several industry certifications, including the OSCP and an MBA in Technology and Innovation.

His expertise extends to cybersecurity, strategy, technology innovation management, governance, risk, and compliance across various industries, including Casino and Gaming, Entertainment and leisure, Australian Defence Force, Local Government, and start-ups.

Russell also serves as a board member of a Not-For-Profit and is a Guest lecturer and Mentor across several universities in the fields of Information Technology and Cybersecurity.

• Anne Leslie is Cloud Risk and Controls Leader for IBM Cloud for Financial Services in Europe. Prior to joining IBM, her career spanned the intersection of financial services, European regulatory policy, blockchain and operational security in leadership roles in both sales and advisory.
• Bilingual in French and English, she holds an Executive MBA from HEC Business School in Paris and the CCSP in Cloud Security from (ISC)² in addition to multiple technical platform certifications. Today, her focus is on enabling Europe’s banks to secure and de-risk their journey to public cloud, and she regularly contributes her thought leadership to industry conferences and working groups.
• Determined to debunk the notion that the human element is the weakest link in cybersecurity, Anne also leads the application of Design Thinking to some of the most wicked problems facing practitioners and is a fervent champion of human-centered approaches to improving enterprise and ecosystem security outcomes.
• Irish by nature and French by design, Anne was born and raised in the Republic of Ireland and lives happily with her three children in Paris, France which has been her home now for over twenty years.
• Antifragile by Nassim Taleb: For Reference

Marty Edwards is a globally recognised Operational Technology (OT) and Industrial Control System (ICS) cybersecurity expert who collaborates with industry, government and academia to raise awareness of the growing security risks impacting critical infrastructure and the need to take steps to mitigate them. As Vice President of Operational Technology Security at Tenable, Edwards works with government and industry leaders throughout the world to broaden understanding and implementation of people, process and technology solutions to reduce their overall cyber risk. Prior to joining Tenable in 2019, Edwards—a 30‐year industry veteran—served as the Global Director of Education at the International Society of Automation (ISA). While at ISA, he was recognized by his industry peers with the SANS ICS 2019 Lifetime Achievement Award. Prior to ISA, Edwards was the longest‐serving Director of the U.S. Department of Homeland Security’s Industrial Control Systems Cyber Emergency Response Team (ICS‐CERT). Edwards also served as a program manager focused on control systems security at the Department of Energy’s (DOE’s) Idaho National Laboratory (INL) and has held a variety of roles in the instrumentation and automation fields. Edwards holds a diploma of technology in Process Control and Industrial Automation (Magna cum Laude) from the British Columbia Institute of Technology (BCIT), and in 2015 received the institute’s Distinguished Alumni Award. In 2016, Edwards was recognized by FCW in its “Federal 100 Awards” as being one of the top IT professionals in the U.S. federal government.

Sean Duca
Vice President and Regional Chief Security
Officer, Asia Pacific & Japan
Palo Alto Networks

Sean is vice president and regional chief security officer for Asia Pacific and Japan at Palo Alto Networks. In this role, Sean spearheads the development of thought leadership, threat intelligence and security best practices for the cybersecurity community and business executives.
With more than 20 years of experience in the IT and security industry, he acts as a trusted advisor to organisations across the region and helping them improve their security postures and align security strategically with business initiatives.
Prior to joining Palo Alto Networks, he spent 15 years in a variety of roles at Intel Security (McAfee), with his last position as the Chief Technology Officer for Asia Pacific. Before this, Sean was involved in software development, technical support and consulting services for a range of Internet security solutions.
Sean actively discusses security issues in mainstream media, including television, radio, print and security related broadcasts. He regularly participates in forums, conferences and panels, and provides intelligence on cybersecurity matters to the public and private sector.

Reinhart Hansen, Director of Technology, Office of the CTO, Imperva 

Reinhart is an experienced Information Technology and Cyber Security leader with over 25 years of experience.  His career is founded by a degree in Computer Science from the Royal Melbourne Institute of Technology (RMIT) where he majored in Data Security and Communications.

Initially developing applications and security middleware for the Financial Services industry his career quickly became focused on helping organisations manage cyber risk by securing their applications, infrastructure and data using a wide variety of vendor technology combined with industry best security practices.   He has a demonstrated history of working in technology advisory, architecture, solution design and pre-sales roles.  

Reinhart is passionate about all aspects of cyber security and has been with Imperva since 2015.  Initially working as a principal SE in the APJ region, he is currently a Director of Technology within Imperva’s CTO Office and reports to Kunal Anand, Imperva’s CTO. 

A seasoned entrepreneur with deep experience in the technology sector, Trent is a seasoned data and security expert, often called upon by the government and enterprise to help advise on how to manage regulated data in complex environments.

Trent founded two technology companies in the U.S. and London with one culminating in an IPO. Today, Trent today is the CEO and Chairman of Cocoon Data and holds two board positions as a Non-Executive Director.

Prior to Cocoon Data, Trent founded and led the IPO of technology cyber security company Covata on the ASX. Prior to this, he ran a successful start-up specializing in telco/mobile marketing in partnership with STW/WPP (premium SMS voting on TV/radio/consumer products) and was Chairman of an Australian ASX listed Bio-tech company.

His foundation years in the technology industry was as a Business Analyst and Solutions Architect at one of the world’s first NASDAQ listed global technology consulting companies – Seranova. With graduate years spent with Bankers Trust and Deutsch Bank in London in global middle office and projects (FX/Euro conversion/Y2K)

Today, Trent and the Cocoon Data team leverage their secure object, patented technology to help keep companies and sovereign data safe, from harm’s way.

Michael is a strategic leader with more than 20 years’ experience in Financial Services and Defence markets. He has demonstrable success in bringing early stage companies to market, utilising skills across Application Development, Product Management, Marketing and Sales. He operates collaboratively to distil technology solutions into customer value propositions, sales strategies and delivery models that are field enabled, integrated and commercially relevant.

John Karabin is the Senior Director of Cybersecurity for NTT Ltd in Australia, and is responsible for Australia’s security strategic direction, capability and go-to-market. He builds trusted partnerships with clients and technologists, bringing a keen focus to customer-centric delivery and operations.

John specialises in risk-based information security, combining a consulting led approach to meet the practical security needs for organisations increasingly dealing with a growing threat landscape and organisational change.

John has more than 25 years’ experience in information and communications technology (ICT), working in various locations around the world. He has dealt with a wide range of organisations, having worked with government and commercial entities across many geographies.

Before joining NTT, John was a Partner at EY leading their government risk and information security practice. Prior to this, he was the APAC Managing Director for Security at Verizon and also ran their Australian Telecommunications business.

John holds a Graduate Diploma in Technology Management from Deakin University and a bachelor’s degree from Curtin University in Communication Engineering, Electronics and Computer Science.

In his spare time, John is a volunteer firefighter with the NSW Rural Fire Service and a board member with Cyrise, Australia’s premier Cybersecurity start-up incubator.

GTIC_Monthly_Threat_Report_January_2022

My career is an example of professional shifts and huge amount of change. It started with the global legal consultancy names like Baker & McKenzie, Chadbourne & Parke. Following the completion of an internship at Deloitte (Zurich, Switzerland), I’ve spent around 8 years in Corporate Law, Tax Structuring and Digital Law across the EU and CEE.

I had my legal/management consulting business as a co-founder, based in Switzerland for three years and completed my Masters’ Degree in International Law and an Advanced Degree in the EU Commercial and Economical Law from the University of Lausanne (Switzerland) in 2010.

I brought my multifaceted global experience to the Australian soil in 2017, with an accompanying skillset and understanding of management, marketing and product strategy within the walls of the Melbourne Business School as an Enterprise Management Specialist. At the time I was working on the GTM for the cyber security and renewable energy startups internationally.

Currently I am developing the Regulation Technology business partnerships at Fastlane Solutions (Sydney/Melbourne) as a Business Development Partner, maintaining account management functions and growing major strategic partnership/vendor relationships. I run a think tank/advisory hub called IntFinite which provides business development avenues based on and subject to a Why? question and a robust Purpose of the organisation.

Executive with over 20 years of experience leading IT functions and teams across different global markets, delivering complex digital and business transformation to improve customer service and employee experience. These include large scale technology programs and consolidation of IT Teams across different markets to drive efficiency and standardization of IT operating model and processes. Over the past 4 years, as the General Manager/Deputy CISO, has led the cybersecurity strategy and implementation of a multi-year roadmap across global FMCG organisation operating in 6 countries across Asia Pacific to mitigate the evolving risk against Cyber Threats.
Proven track record and passionate about building and inspiring teams to deliver customer centric IT services

Rebecca Herold, CDPSE, FIP, CISSP, CIPM, CIPP/US, CIPT, CISM, CISA, FLMI, Ponemon Institute Fellow, has over 25 years of IT, info sec, & privacy experience; CEO & Founder (2004) of Rebecca Herold, LLC, aka The Privacy Professor(R); CEO & Founder (2020) of Privacy & Security Brainiacs; and host of the radio/podcast show “Data Security & Privacy with the Privacy Professor“. Founder (2014) & Engineer/Architect, and Owner of all IP for content, specifications and architecture of SIMBUS, LLC and all derivatives thereof.

Rebecca is an entrepreneur, author & was an Adjunct Professor for the Norwich University Master of Science in Information Security & Assurance Program for 9 years where she also created program curriculum. Rebecca led the NIST Smart Grid privacy group for 7 years and is a founding member of the IEEE P1912 Privacy and Security Architecture for Consumer Wireless Devices Working Group (June 2015). Rebecca has received numerous awards and recognitions for her work throughout the course of her career. Rebecca has is currently finishing her 20th published book to date, plus chapters in many books and hundreds of articles. Some of Rebecca’s books include:
* Security & Privacy when Working from Home & Travelling
* The Practical Guide to HIPAA Privacy and Security Compliance (2 editions)
* Data Privacy for the Smart Grid
* The Privacy Papers
* Managing an Information Security and Privacy Awareness and Training Program (2 editions)

Rebecca has a B.S. in Math & Computer Science & an M.A. in Computer Science & Education. Rebecca is a longtime member of ISACA, Infragard, IAPP, ISSA, (ISC)2, IEEE & ACM.

“I do not want you to be impressed by me, I want you to be blessed by me” is Belinda McEachern’s personal motto. And it’s a motto that she’s put to good use both professionally and personally, within all walks of life. Originally from Greenwood SC, Belinda now lives in Blythewood SC (suburb of Columbia) with her husband Danny (of 20 years) and her two children (Aaron – age 16 & Camille –age 12).

Belinda is truly an individual that epitomizes the essence of selfless leadership and the true meaning of a leader. She possesses outstanding leadership traits (e.g., confidence, commitment, communication, and dedication that all persons seek and need in the 21st century). Belinda has had the privilege of holding a variety of leadership roles, both personally and professionally. Moreover, Belinda has had a stellar career in the fields of Education Leadership, Technology, Cyber Security, and Volunteerism.

Currently, Belinda is the Chapter President for one of the “BIT” Blacks In Technology Foundations” newest Chapters: “Blacks In Technology Columbia!” Blacks In Technology Columbia is the official Chapter for the Metro Columbia, SC region of the dynamic, growing, vibrant Blacks In Technology 501 (c)(3) non-profit organization. The purpose of this group is to network, learn best industry practices, and to advance Information Technology careers. The goal and mission is to “stomp the divide” between Black Tech workers and to fundamentally influence and effect change on an industry that has historically not sought parity with respect to Black workers. The intent of BIT Columbia is to level the playing field through training, education, networking, and mentorship with the support of allies, partners, sponsors, and most importantly their global members!
Belinda has impressive academic and professional credentials. She holds a Master of Education from Columbia College and a Bachelor of Arts in Art Education from the historical SC HBCU, Benedict College. Belinda has recently completed academic studies at the Institute for Veterans and Military Families (IVMF) at Syracuse University, with a concentration in Cybersecurity and continuing her Doctorate (EDD. ET) program with a concentration in Educational Leadership & Educational Technology. Her ethical values and professionalism are above reproach.

Belinda exemplifies public service through her many volunteer endeavors, alongside Blacks In Technology Columbia. Her commitment to public service is manifested in her numerous volunteer and membership efforts. Belinda holds memberships with The National Coalition of 100 Black Women Inc., Columbia (SC) Chapter, whose mission is to advocate on behalf of black women and girls to promote leadership development and gender equity in the areas of health, education and economic empowerment; SC SkillsUSA Executive Board (currently Vice Chair): serving thousands of high school, college and middle school career and technical students and professional members enrolled in training programs in trade, technical and skilled service occupations, including health occupations.; Grow with Google Business Partner; NIST – NICE (National Initiative For Cybersecurity Education) Apprenticeship Subgroup/ Working Group; Career & Technology Education (CTE) Advisory Council for SC School District Five of Lexington and Richland Counties; “BIC”- Blacks in Cybersecurity; SANS Women in Cybersecurity; SC Associationof School Administrators (SCASA); Women of Distinction Toastmasters (Toastmasters International); SC Codes (S.C. Department of Commerce’s Office of Innovation); mediaspace.global (The independent global social network for professionals in media, marketing, technology and regulation); siberX (Curating a global community of cybersecurity professionals and enthusiasts); “AYA” – Ally of the Year Awards 2021 (Judge/ Selection Committie), and Women’s Cyberjutsu; The Anti-Human Trafficking Alliance (Lexington,

SC); Carolina Alliance for Technology Parents in Partnership (CAT PIP), Columbia, SC; and IT-ology (K-12 STEAM), Columbia, SC.

Abhijeth Dugginapeddi is a security practitioner, heads an AppSec team and an Adjunct lecturer at UNSW in Australia. Previously worked with CBA, Adobe Systems, TCS and Sourcenxt. Security Enthusiast in the fields of Penetration Testing, Application/Mobile/Infrastructure Security. Believes in need for more security awareness and free responsible disclosures. Got lucky in finding few vulnerabilities with Google, Yahoo, Facebook, Microsoft, Ebay, Dropbox, etc and one among Top researchers in Synack a bug bounty platform. Got a chance to speak at Defcon, Blackhat, OWASP AppSec USA, c0c0n, Secure-2018 Poland, CISO Summit, etc.

Jason is a Associate Partner at IBM with a strong background in project management, cybersecurity, cloud, and strategic planning. He’s leads IBM’s cybersecurity initiatives across Department of Homeland Security, Department of Justice, and Foreign Affairs. Jason designed and led many client security programs to drive success and innovation in areas such as vulnerability management programs, security operations, risk management, identity and access management, and solution architecture design efforts. Jason is adept at leading project teams, cyber capacity building, and implementing solutions in complex environments. He holds the following certifications: PMP, ITIL, CISSP-ISSAP, CISM, CISA, SAFe 5 Architect.

Jason received multiple leadership awards for his contributions to the technology sector both in the Washington, D.C. region and globally. He served as the President of the ISACA Greater Washington, D.C. Chapter (GWDC) from 2018-2020. He is a featured writer for Govloop and an ISACA Expert Speaker. Jason is a sought-after industry expert in the cybersecurity field. He is a frequent conference speaker and has been interviewed by news outlets such as Politico, FedTechMagazine, and TechTarget. He previously served as Vice President and Director of Professional Outreach and Development for GWDC. He was part of many working groups for ISACA Global such as the Leadership Development Advisory Council. He is a key contributor to the CISA and CISM online review courses and exam content creation.

Jonathan Brandt, CISM, CDPSE, CCISO, CISSP, CySA+, CPI, PMP

A senior information security practice manager in ISACA’s Knowledge and Research department. In this role, he contributes thought leadership by generating ideas and deliverables relevant to ISACA’s constituents. He serves ISACA® departments as a subject matter expert on information security projects and leads author management teams whenever external resources are necessary. Brandt is a highly accomplished US Navy veteran with more than 25 years of experience spanning multidisciplinary security, cyberoperations and technical workforce development. Prior to joining ISACA, Brandt was a project manager for classified critical infrastructure projects across the globe.

ISACA Portal

Jean-Michel Ferat is a Senior Managing Director at Ankura with over 20 years of experience in the specialized fields of forensic accounting, fraud detection, and data analytics. He has applied his skills in a variety of cases involving corruption, kickbacks, collusive bidding rings, money laundering, embezzlement, asset misappropriation, terrorist financing, and financial statement fraud. He has led or participated in reactive investigations and proactive compliance engagements, including Foreign Corrupt Practices Act monitorships, across the United States and in over 25 countries around the world.  Jean-Michel served two terms as the forensic accounting expert on the audit and finance committee of the board of directors of the Global Fund to Fight Aids, Tuberculosis and Malaria and currently serves on the international advisory board of the CEELI Institute where he advises the organization on anti-corruption initiatives.

Jean-Michel has led or participated in numerous high-profile and complex projects across the United States and in international locations including Burkina Faso, Cambodia, Cameroon, Chile, China, Djibouti, Guinea, Holland, India, Indonesia, Iraq, Japan, Jordan, Kenya, Kuwait, Latvia, Liberia, Madagascar, Mali, Mauritania, Mexico, Pakistan, Senegal, South Africa, Trinidad and Tobago, United Arab Emirates, and Vietnam.

Ian has dedicated his IT career to identity and access management, working in and around banking and finance for the last 19 years. In this time, Ian has worked as a software engineer, security architect, and identity product owner. He has led IAM programmes for major banks such as the Commonwealth Bank of Australia, and ran the digital transformation programme as Head of Technology, Security for HSBC Global in the UK. After a number of years independently consulting in Europe around PSD2 and Open Banking, Ian joined Transmit Security in 2019 as Sales Engineer across APAC, before moving into a global role in 2021 covering technical evangelism and marketing.

Sawan is an IT Risk Management Professional with over 15 years’ experience in multi industry organisations that have grown by acquisitions and mergers where he created and delivered strategically aligned IT Transformation programmes while managing risk that improved scalability, agility and provided new business enablement.

Sawan’s career has been well travelled, built upon collaborative and flexible approaches that have ensured people are at the centre of all initiatives as the main asset thus building Information Security and Privacy principles in every table discussion.

As a qualified architect, one of his biggest strengths is to be an effective communicator and translate complex to a simple explanation and vice versa while focusing on the value of the work and how it contributes to business growth.

Tinesh has 15 years of successful cyber corporate and 5 years of start-up entrepreneurial cyber experience.
He has built and exited 2 start-ups and currently sits on the board as an advisor to start ups within Cyber, EdTech, Software Development and Social Tech.

Tinesh is a mentor, motivator and advises individuals who are considering an entrepreneurial career as well as being a mental health advocate, keen supporter of mindfulness and self care.

He is a Forbes Technology Council member, part time lecturer at Brunel University and aspiring author.

Tinesh is also a advocate of helping young learners find their place in the working world and helps over 30 young learners a year with his personal time to encourage and motivate them to follow their dreams and achieve their goals.

Scott Fletcher is a Cloud Security Engineer at Whispir

Scott’s background includes Penetration Testing, Software Development & Security Consulting. He has held Principal Consultant rules in both Australia & New Zealand, and worked for a number of enterprise and financial services organisations.

Phillip Campbell is the founder and CEO of enigmaFIT, a global executive brain coaching company. As a cognitive scientist, he continues to extensively research the brain and cognition.

He has developed a framework of how to optimize the integration of the left-hemisphere and right-hemisphere working together to create Brain Balance. Phillip has pioneered leadership development and learning agility areas approaches by leveraging the concepts of Fluid Thinking and Crystallized Knowledge, and providing the Fluid Thinking Development Program to the brightest leaders in our global business environment.

Phillip’s program is a refreshing and quantifiable approach to unlocking and harnessing the power of cognitive capability of individuals and organizations. His team at enigmaFIT provide cognitive development programs to C-suite and senior executives of global multinational companies across the USA, UK, Europe, Australia, and Asia, and also to successful entrepreneurs.

His methodology ensures that the best leaders become elite leaders, and exceed their potential by exponentially increasing their performance.

Download ‘Fluid Thinking’ PDF

Saaim Khan is a cybersecurity professional with 20 years of experience in client-facing roles. He has worked with organisations in APAC, ranging from small businesses to large enterprises.

Saaim holds multiple security certifications (CISM, ISO 27001 LI/LA, CTT+) and degrees in Computer Science and Project Management and qualifications in Cybersecurity Management, Cyber Law and Cyber Warfare.

Saaim has previously built and let security consulting practices, while working as an interim-CISO, security advisor and strategy consultant with organisations both big and small. He has helped organisations achieve compliance and certification with ISO 27001, SOC2 and PCI-DSS, and conform to GDPR, CCPA, MAS-TRM and PDPA requirements.

Saaim is passionate about reducing cybersecurity inequity for businesses. A regular media commentator and podcaster, Saaim promotes the need for greater transparency in cybersecurity engagements.

Lisa Lorenzin is Senior Director of Transformation Strategy at Zscaler, specializing in secure application access and digital transformation. For more than 25 years, she has worked in a variety of network and information security roles and has contributed to open standards for endpoint integrity and network security from the Trusted Computing Group (TCG) and Internet Engineering Task Force (IETF).

Lisa’s current focus is on helping customers achieve their security goals and create a seamless user experience across cloud and mobile environments through the use of cloud-delivered zero trust access solutions.

Lani is a technologist, amassing 20+ years experience in fields such as cybersecurity, startups, IoT, AI and robotics.   He has worked for some of the largest organisations globally – Intel Corporation, Cisco Systems, PwC and Deloitte and is currently the ANZ Director for Claroty.  He also has an interest in the startup sector, and is part of the founding team at Cybermetrix and Azcende.

In 2017 he co-founded and currently serves as CEO of IoTSec Australia, an industry initiative to advocate for safe and secure practices in the emerging Internet of Things area with a focus on critical infrastructure and smart cities.  Lani is also a practicing Psychotherapist after completing his Masters in 2015 and it gives him an uncommon approach when looking at the intersection of humanity and emerging technology.

As Founder & Chief Strategist at CyberSC, Dominic Vogel holds a proven track record within cyber security across multitude of industries (financial services, logistics, transportation, healthcare, government, telecommunications, and critical infrastructure). Dominic actively participates in the Vancouver security community and is a well-respected cyber security expert for appearing on media news outlets across North America and Internationally on BBC World News. Dominic is highly regarded as a cyber security thought leader and was recently appointed to the BC Provincial Cyber Security Advisory Committee.

Dominic focuses much of his energy on providing strategic security leadership to technology start-ups and small/midsize businesses to proactively solve their cyber risk challenges. He strives to provide practical cyber security advice to his clients and actively turning the security consulting world upside down.

Having thrived as an investment advisor at an independent investment firm in the harsh post-GFC climate, Ed quickly learned that the ‘old-school’ approach to selling, which has been glorified in popular culture, was counterproductive and downright destructive over the long-term. This motivated Ed to breakdown the nuances and processes required for transparent, effective and scalable commercial strategies.

Since 2013, Ed has helped grow and scale multiple businesses across various sectors, ranging from financial markets advisories to digital agencies. He’s also led the successful launch of multiple start-ups while consulting for organisations in both the private and public sectors. In 2017, Ed and his longtime associate/client, Nicholas Forsyth, joined forces to take Sales Inc from a consultancy to a company that offers Sales as a Service. The aim…helping business reach their commercial objectives, whilst raising industry standards and awareness around best practice.

Ted Ipsen is the President and COO of Positroniq, a strategic security and risk consultancy. He is an experienced executive manager with over 20 years of experience specializing in high-tech crime investigation, digital forensics, and the delivery and oversight of consulting and advisory services in the areas of information security, secure development, security assessment, information risk management, IT governance, compliance, business continuity management, and aligning strategic IT and security goals with business objectives.

He was recruited out of law enforcement by a global “Big 4” audit and professional services firm, and has since moved progressively to more technical, and focused security consultancies.

Mr. Ipsen has worked with organizations across many industries, reviewing security and IT programs against industry leading practices, standards, and regulatory frameworks, integrating security operational processes, and providing security training to infosec practitioners, software developers, and executives.

He has served as the interim-CISO for a major airline, and built security programs for organizations of all sizes.

He has spoken at many national and international security conferences, and is the co-author of “Law Enforcement Challenges in Digital Forensics,” presented at the National Colloquium for Information Systems Security Education. He has contributed to a number of security publications, including “Securing Linux, Step by Step” and “Disaster Recovery, Step by Step”, issued by the SANS Institute, and “Practical Cybersecurity Architecture”, from Packt Publishing.

Resources Mentioned:

https://www.provendatarecovery.com/blog/what-is-digital-forensics/

https://www.cisostreet.com/effective-board-communication-for-cisos/

Gail is responsible for leading a team to create the digital division of VU Polytechnic the TAFE arm of VU.  This includes leading three strategic initiatives, the Wyndham Tech School, Sunshine Skills Hub and Cybersecurity Training Centre to provide STEM training from Year 7 right up to mature age adults.  Gail engages in regular speaking events and podcasts to increase the visibility of careers that involve STEM and to educate education leaders on the skills required for the future of work.  Gail is passionate about promoting the growing job opportunities available to the young people of Melbourne’s West and believes anything is possible if you put your mind to it!

From an early age, Jay has been interested in computers, and is still fascinated by them and the impact they continue to have on our society. His first job out of university was at Wipro as a pen-tester, but he quickly and consistently climbed the ranks – or sometimes took a sideways move – to broaden his experience. As a result, Jay has had many different roles, ranging from technical, strategic, delivery, and customer-facing.

Jay moved continents and had to adapt to an entirely new city, a new way of life and a new culture. This taught him many things, such as personal resilience, the importance of building strong relationships, and how to pick new things up quickly. It’s also given him an incredibly diverse and broad perspective, which helps him get results.

Jay has been very strategic and proactive in his career moves, seeking opportunities to build out his skillset to help organisations protect and defend against cyber threats. I’m a team player and have always believed that teams can achieve more together than they can as individuals, which is very important to him as a leader. Jay has also discovered how fulfilling it can be to help others achieve their goals, which has fueled his passion for working with educators to help students develop skills to transition to the workforce successfully.

Jay wants to help organisations strengthen and shape their approach to cybersecurity through the alignment of cybersecurity outcomes with business success. Jay’s excited by what the future holds, which he believes puts him in a fantastic position to lead his teams and customers into the future.

Andy Walker is the co-founder and Chief Executive Officer of ditno, a Network Security Policy Management Software company that enables organisations to build a Governed Zero Trust Network for improved and simplified security.

After completing an apprenticeship and signing a professional football contract in England, Andy studied Information Technology and quickly developed a passion for cyber security, specifically network security. He gained a number of industry qualifications including CCNA, CCNP, CCVP, MCSA and ITIL.

Over the last 20 years, Andy has designed and engineered interconnected networks for large enterprises including financial services and global logistics organisations, ensuring their IT services are connected securely, reducing the impact of cyber threats.

Before working on ditno, he was managing the delivery of large Network Security projects at the Commonwealth Bank of Australia. As ditno’s CEO, Andy has built a culture of innovation and collaboration to deliver leading-edge and beneficial solutions to their customers.

Michael is a Co-founder of Tide Foundation, a deep tech start-up developing technology to enable cyber-herd immunity. He’s a seasoned entrepreneur with a rich history leading the development and go-to-market of enterprise software. He spent over a decade growing a decorated digital agency before merging to become a full services agency and successfully exiting. Michael holds a degree in Information Systems and Accounting, UNSW; was an academic professional at the University of Illinois and currently serves on the advisory board of the Children’s Medical Research Institute.

Jacqui Loustau – is the Founder and Executive Manager for the Australian Women in Security Network (AWSN).

She is a cybersecurity expert, with over 2 decades of  experience in IT and Information Security. She has worked on large projects internationally across a wide range of security domains and in cybercrime. She is passionate about security and collaborating with others to drive innovation and change within industry. This includes educating small businesses and individuals on improving their cybersecurity practices. She has written a number of white papers and contributed to books, podcasts, webinars and is regularly requested to speak at industry events.

As the Founder of the Australian Women in Security Network (AWSN) since 2015, she has been working on several initiatives to connect, support and inspire more talent from all industries and diverse backgrounds to pursue a career in security and to stay. For this work she has received several awards including global recognition as an IFSEC top influencer #9 for security thought leadership (2018), AUSCERT Information Security Excellence (2021), AISA 2016 Diversity in Cybersecurity, ISACA Oceania CACS 2018 Women in Technology Leadership, 2019 Best Volunteer winner and Highly commended for IT Security Breaker.

CyberShift2 Alliance on Eventbrite for now – https://www.eventbrite.com.au/e/cybershift2-tickets-163133064387

Andrew Scully is an information security professional with over 15 years’ experience building and delivering security and technical outcomes aligned for both the commercial, military and government sectors.

Previously, Andrew has successfully led large scale structural, technical, and cultural security transformations for Blue Coat Systems, Symantec, Telstra Defence and the Royal Australian Air Force. These roles have included responsibility for;

• Security program oversight as CISO for the Defence Terrestrial Communication Network delivered under JP2047, and
• Operational risk management aspects of Symantec’s internal information security practice including the Joint Security Operations Centre, Incident Response, Forensics, Threat Intelligence, eDiscovery and Red Teaming.

Currently, Andrew is the head of Cyber Security at Ampion (formerly Shelde). Andrew’s oversight includes more than 40 technical staff delivering complex cyber solutions across Sydney, Canberra and Melbourne.

Michael is the Head of Attack Surface Analysis at Palo Alto Networks. He leads a large team of analysts who identify vulnerabilities in large Fortune 500 companies and government agencies’ vast online presence. He also has 14 years of FBI experience as a Special Agent, leading extensive investigations and overseeing countless arrests, search warrants, and dismantlements of cyber threat actor sets. Michael has spoken on cybersecurity topics over 500 times around the world and was considered “one of the FBI’s most talented presenters.” Michael is driven by his family, making people laugh, and a desire to help others.

Sean Duca
Vice President and Regional Chief Security
Officer, Asia Pacific & Japan
Palo Alto Networks

Sean is vice president and regional chief security officer for Asia Pacific and Japan at Palo Alto Networks. In this role, Sean
spearheads the development of thought leadership, threat intelligence and security best practices for the cybersecurity community and business executives.
With more than 20 years of experience in the IT and security industry, he acts as a trusted advisor to organisations across the region and helping them improve their security postures and align security strategically with business
initiatives.
Prior to joining Palo Alto Networks, he spent 15 years in a variety of roles at Intel Security (McAfee), with his last position as the Chief Technology Officer for Asia Pacific. Before this, Sean was involved in software development, technical support and consulting services for a range of Internet security solutions.
Sean actively discusses security issues in mainstream media, including television, radio, print and security related broadcasts. He regularly participates in forums, conferences and panels, and provides intelligence on cybersecurity matters to the public and private sector.

Laura is a criminologist specialising in cyber safety. She has worked in NAB’s Enterprise Security team for seven years, and previously worked in Personal, and Institutional Banking. Laura leads NAB’s Security Advisory & Awareness team, which works with NAB’s employees, customers, and the community to empower them to keep themselves safe online and in the physical world. Laura has a Bachelor of Arts with double majors in Criminology and Political Science from The University of Melbourne/Queen Mary College University of London, and a Masters in Criminology from the University of Melbourne.

https://www.nab.com.au/about-us/security/online-safety-tips-business

Dustin Brewer, CISM, CSX-P, CDPSE, CEH, is ISACA’s Senior Director, Emerging Technology and Innovation, a role in which he explores and produces content for the ISACA® community on the utilisation benefits and possible threats to current infrastructure posed by emerging technologies. He has 20 years of experience in the IT field, beginning with networks, programming and hardware specialisation. He excelled in cybersecurity while serving in the US military and, later, as an independent contractor and lead developer for defence contract agencies, he specialised in computer networking security, penetration testing, and training for various US Department of Defence (DoD) and commercial entities.

Emerging Technology Report: https://www.isaca.org/go/emerging-tech-2021

With an MBA and Law education, Ramsés is a +22 year security professional with deep expertise in the Risk Management and Governance areas. Ramsés is now  International Chief Technology Officer with CyberRes, a Micro Focus line of business, where he defines the vision and mission, purpose and promise of the division. He has recently been Strategist & Evangelist for the office of the CTO with Symantec and holds the following professional accreditations: CISM, CGEIT, CISSP, SCPM, CCSK, ITIL and COBIT Foundations. An internationally recognized public speaker, has visited +24 different countries in the past 12 months and has been awarded ‘Best Speaker’ in the four continents. He is also a Six Sigma Black Belt professional and is proud of being Past International VP for ISACA’s Board of Directors and Immediate Past President and now Ambassador of the Barcelona Chapter. Ramsés is also Executive Vice President of the Quantum World Association and has had the US flag flown on his honor at The Capitol, in Washington DC, USA. With already 14 Marathons – and other crazy adventures on his legs – he lives in Barcelona, Spain, with his wonderful wife, and his two loved kids.

Sam Crowther is the founder of Kasada, a cybersecurity company with a mission to restore trust in the Internet. Sam’s passion in the security industry began as a high school student when he worked with the team at Australia’s Signals Intelligence Agency. From there, he moved to a red team role at Macquarie Group, an experience that inspired him to start his own company.

With funding from leading U.S. and Australian investors, Crowther launched Kasada in 2015 to provide innovative application security to companies around the world. Based in New York and Sydney, Crowther loves creating simple technical solutions to complex problems and is motivated by challenging preconceived ideas and beliefs in order to have a positive impact on the world.

Jenai Marinkovic, vCTO/CISO, Tiro Security; Technology & Information Security Consultant, Beyond; member, ISACA Emerging Trends Working Group

Jenai Marinkovic is a multidisciplinary technologist and strategist with 20 years of experience in architecting, building and securing systems at scale. She has designed and operated in real-time over the top streaming ecosystems that power live sports, gaming, and entertainment. She’s also worked in biomedical manufacturing and laboratory diagnostics, healthcare tech and robotics in agriculture.

Jenai’s worked with artificial intelligence, its impact on diversity and inclusion as well as improving human empathy towards machines. She has expertise in designing the next generation security experiences necessary to support digital transformation She has built and run design, architecture, innovation, engineering, security and operations teams. Her security expertise spans security architecture, engineering, defense, and forensics and invented a cyber defense framework for large scale breaches based on American football. Jenai has worked for large enterprise brands including DIRECTV, Electronic Arts, Beckman Coulter and international investigations firms such as Kroll.

www.isaca.org/state-of-cybersecurity-2021

Rainer has a long history in applications, data and enabling data driven decision amassed through years of experience in the data warehousing, business intelligence and information management. This has been at many levels, including strategy, project management, solution design, deployment, review and application support.

At Alex Solutions, Rainer brings this knowledge to the data management arena, leading the product direction to help organisations find, understand, share and take action on their data assets.

Kyla is the founder and Chief Executive Officer of Bits N’ Bytes Cybersecurity Education, an NGO that sustains international partnerships with school districts, corporations including Facebook and IBM, and educational platforms like Discovery Education, all in efforts to increase awareness and fluency in privacy and cybersecurity.

Through these efforts, Kyla has worked with teams across Apple, Facebook, and Google, and gained experience working in Threat Intelligence Research, Cybersecurity/Privacy Program Management, and Governance, Risk, and Compliance (GRC). Kyla has also obtained the CDPSE, Certified Data Privacy Solutions Engineer Certification, from ISACA.

Kyla has also had the privilege of sharing her passion on stages including TEDxChicago, NIST’s NICE K12 Conference, RSAC-US 2019, and RSA-APJ 2019 in Singapore. She strives to be an advocate for both cybersecurity education as well as the critical mobilization of Gen-Z youth. With this, Kyla is also the co-founder and co-director of GirlCon Chicago, Chicago’s premiere high-school tech conference that unites 300+ industry professionals and students annually to discuss bridging the gender-gap in tech.

Serial Entrepreneur Wallon Walusayi is the Co-Founder & CEO of 3Data Analytics, a 3D platform for Operations & Security. 3Data Analytics provided the first commercially available cloud-based XR platform 3Data Cloud and is now working with Large Enterprise & Aerospace/Defense companies. Before becoming an entrepreneur, Wallon worked as a Data Analyst with Nike and in the Front office of the Milwaukee Brewers. His entrepreneurial journey began in 2015, founding one of the first 360 video live streaming companies and developing VR training simulators for RSA and Johnson Controls. In 2016 Wallon was NBC’s “SXSW featured entrepreneur” in 2017 he was named “Top 20 XR Person To Watch” and in 2018 named “SXSW Top 25 Startup” by Tech co.

Neil is a Cyber Security Consultant at Kaspersky with over 20 years’ experience.  He delivers large complex technology programs within industrial, airports, aviation and buildings technology sectors across Australia, New Zealand, the UK, Europe and Middle East.  His passion for innovation and digital transformation has helped customers across the globe drive result oriented business transformation.  Neil is “Global Industrial Cyber Security Professional” certified and is focused on helping businesses within the industrial sector across Australia and New Zealand to improve their overall cyber security posture and embrace Industry 4.0 Technologies.

BLAIR CRAWFORD

Founder and Managing Director, Daltrey 

Blair Crawford is a biometrics and identity management specialist with extensive experience helping global organisations solve their most pressing cyber security, risk and compliance challenges. Leveraging this wealth of experience, he recently established Daltrey – a unique security solution that delivers biometrics as a service for workforce authentication, across all physical and digital access scenarios.  

Throughout his time working with diverse international companies and federal government agencies, Blair witnessed key industry developments that now make it possible for organisations to integrate biometrics as a viable, scalable authentication method and a solution to increased cyber threats and physical security breaches. The socialisation of biometric technology with Apple Touch ID was a huge advancement, but it was just the start. A more critical development was the increased accountability of C-Suite executives for the control and protection of user and client data, as per GDPR and CPAA. Identity access management is now recognised as a core part of any organisation’s cyber security strategy, with severe implications in place for failing to do so. The final enabler for Daltrey was the standardisation of interface specifications. This created a pathway for Blair and his team to build a system that establishes a centralised, trusted biometric identity, capable of being integrated across all access scenarios in a cost-effective way. 

Blair is an industry thought leader, regular guest speaker and the host of industry podcast, IDentity Today. He believes biometric technology is a convenient, powerful tool that can be used to create safer and more secure workplaces. He’s an firm advocate for self-sovereign identity and is driven to developing solutions that give users control over how their identity is used.

Rachael Greaves is a records and information management thought leader, who designed the Castlepoint command and control product. Rachael has consulted on large-scale records, security and audit projects in government and regulated industries with complex integrated environments, and developed Castlepoint in response to the tension seen in organisations between compliance, usability, sustainability and cost. Rachael is a Certified Information Professional (CIP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified Data Privacy Systems Engineer (CDPSE), and is certified in project, change, and records management. With a cultural anthropology and linguistics background, Rachael brings ethical, global and sustainable practices to the sector. Her innovative technology concept has transformed the compliance and risk management outcomes of multiple organisations, by automating the application of complex and multi-layered regulatory obligations to their data holdings. Rachael’s mission is to improve outcomes for citizens and stakeholders by helping governments and organisations to provide better, more accountable services.

Professor Lisa Harvey-Smith is the Australian Government’s Women in STEM Ambassador and a Professor of Practice at the University of New South Wales. In her role as Women in STEM Ambassador, Lisa is responsible for increasing the participation of women and girls in Science, Technology, Engineering and Mathematics (STEM) studies and careers across Australia.

She is an award-winning astrophysicist with research interests in the birth and death of stars and supermassive black holes. Lisa serves on the Australian Space Agency’s Advisory Group and previously worked on the Square Kilometre Array – a continent-spanning next-generation radio telescope that will survey billions of years of cosmic history. Lisa has written three popular science books: When Galaxies Collide, the children’s book Under the Stars: Astrophysics for Bedtime and The Secret Life of Stars.

Jo Stewart-Rattray CISM CGEIT CISA CRISC CP
Director, BRM Advisory
ISACA member

Adelaide business leader and information security veteran, Jo Stewart-Rattray, has been recognised for her tireless work educating and mentoring future generations of IT professionals and breaking down gender barriers in the IT industry, taking out Highly Commended in the Australian Women in Security Network’s 2020 Award of the Year.

For over 25 years Jo has championed gender equality in the security industry culminating in the establishment of SheLeadsTech, a program Jo pioneered with global professional association, ISACA, aimed at educating, mentoring and empowering women in tech. In under four years, SheLeadsTech has grown from a base of zero, to being embraced on five continents, and now is one of the core programs of ISACA’s newly launched One In Tech foundation. Over 10,000 community professionals have engaged in SheLeadsTech events and online platforms to promote gender equality, address the gender pay gap, enhance the careers of women in IT and offer a safe space to discuss their experiences.

“Even as technology transforms the global economy at a staggering pace, we are still dealing with the gender bias that hampered our mothers and grandmothers,” said Stewart-Rattray. “A challenge this large and this persistent can feel overwhelming, but there are steps each of us can take to make meaningful progress. If we are resolute, the day will come when our classrooms, offices and board rooms are filled with empowered women and girls ready to make their mark on the technology workforce.“I am honoured to have received the Highly Commended Award amongst the amazing finalists for this year’s award. There is still much to do, and working together we can all help to break down these archaic barriers.”

Kris has an extensive experience both running his own businesses as well as a successful corporate career across Asia, Europe, North America and then in Australia. Kris has started and run businesses successfully as well as cases of learnings from his adventures. He also has corporate career including internal transformations as well as leading customer engagements and sales for small to large multi-million dollar programs. He is ongoing early adopter for continuous personal productivity and learning – MBA from Macquarie Graduate School of Management.
LinkedIn

Jeff is an ICT domain specialist, with significant international business development, sales and delivery experience in the private and public sectors. He has held executive management and technical roles in both commercial and large government organisations. Jeff has extensive experience in defining and understanding business needs from clients and delivering creative outcomes. He is a detailed problem solver, with the ability to engage across a broad cross section of an organisation. Jeff is married with four adult children and an appetite for continuous learning of business and technology trends and issues – Graduate Diploma on Executive Leadership.
LinkedIn

As Managing Director for BlackBerry’s Spark Division, Jason Duerden is responsible for building and executing the business in Australia and New Zealand (ANZ). In this region, he drives strategy, operations and growth of BlackBerry’s next-generation platform, BlackBerry Spark. Jason brings over 10 years of leadership and business management and technology acumen experience to BlackBerry with domain knowledge in the cyber arena.

Following the acquisition of Cylance in Feb 2019, the BlackBerry Spark platform is the realisation of BlackBerry’s successful pivot to AI software and cybersecurity leader, offering a new unified endpoint security (UES) layer which can work with BlackBerry® unified endpoint management (UEM) to deliver zero trust security. Leveraging artificial intelligence, machine learning and automation, BlackBerry Spark offers improved cyberthreat prevention and remediation, and provides visibility across desktop, mobile, server, and IoT (including automotive) endpoints.

Jason leads a team that brings together sales and technical experts to deliver a unified platform and cyber services, offering a wide range of skills and expertise for the ANZ market to help navigate the demands of secure workplace mobility, business continuity and cyber threats to ensure operational resiliency. Prior to this, Jason was the Regional Director for BlackBerry Cylance responsible for building and leading the supply chain for BlackBerry Cylance in Australia and New Zealand. He was recognised as a CRN top Channel Chief in 2018.

Mandy is a firm believer that diversity in all its forms should be encouraged to promote innovation and find solutions to challenges facing the world.

She herself has had a diverse career ranging from musician, artist, fraud investigator, risk assessor, trainer and analyst. She is currently the Manager of The University of Queensland Cyber Security Operation Centre, and prior to that was a Senior Cyber Crime Intelligence Analyst with the Australian Government.

She has held various roles in information security and investigations including security incident response, malware analysis, communications, and fraud investigator. With 20 years of specialist experience in the Australia Public Service, she has expertise in information security, cybercrime in emerging technologies, risk assessment, digital forensics, cybercrime analysis and fraud investigation.

In her own time, she volunteers at the Australian Information Security Association (AISA) as the Brisbane branch Executive Chair, is the co-founder and Australian Director of Cyber Century Mentoring, is a Justice of the Peace, and an Adjunct Lecturer in Criminology at The University of Queensland.

Mandy mentors students and those new to the infosec industry, speaks at conferences and events, has guest lectured at both The University of Queensland and Griffith University and writes about cybercrime and security awareness. She tweets as @empressbat and plays MMORPG. Her drink of choice is coffee.

Gus began his security journey almost 20 years ago by hacking schools library system to remove fines and had against his name. After he realised he could compromise and manipulate computer systems he continued his journey, albeit illicitly. He was later recruited directly out of high school by the Special Investigating Unit, a government agency, and thus began his professional career. Since then he’s worked also directly for government, specifically heading up security for a Province. He’s headed up red teaming and R&D for PwC South Africa. Since then he was Head of Security for Africa’s first digital bank, and lately he’s part of a team building an entirely new blockchain protocol focused on privacy.

Chris Pogue is the Head of Nuix Partner Connect, the global ecosystem of more than 150 partners representing 74 different countries. He is also a member of the US Secret Service Electronic Crimes Task Force, The International Association of Chiefs of Police, and the International Association of Financial Crimes Investigators.

Over his 25-year career, Chris has led multiple professional security and services organizations to investigate data breaches, secure corporate computing assets and critical value data, implement wide-scale compliance regimes, and help executives and boards of directors both qualify and quantify security risks.

His extensive experience is drawn from careers as a cybercrimes investigator, ethical hacker, military officer, law enforcement and military instructor, university professor, business executive, and board advisor.

Chris served in the United States Army as a Signal Corps Warrant Officer, participating in multiple joint task force missions is support of Operation Enduring Freedom, and the Global War on Terror.  He distinguished himself as an Honor Graduate from a variety of Army Academies and Schools and received multiple awards and commendations for excellence.

Ben has an extensive background in cloud security and enterprise software, with over twenty years in enterprise software; primarily in Security and Compliance.

Starting his technical career building data centers as a Microsoft Certified Systems Engineer, Ben then secured data centers for Fortune 500 customers at McAfee. Learning common security challenges from customers, Ben moved into product management and was responsible for the data center and virtualization security product strategy and roadmap before moving on to work with strategic alliances at Intel Security identifying partners, defining and executing partner strategy, and driving alternate routes to market.

Ben moved to AWS in 2015 to AWS Marketplace which helps customers find, buy, and immediately start using software and services that run on the AWS Cloud. He spent 5 years driving partner integration as worldwide leader of Security, Networking, Open Source and Operating System categories, engaging directly with software vendors, influencing their product strategy and delivering software in a new cloud model. First as an individual contributor, then managing a team helped to bring vendor products to AWS Marketplace drive customer adoption and revenue.

Benjamin Andrew is now a Principal Technical PM for AWS in Migration, Marketplace & Control Services coordinating the phased delivery of a set of prescriptive Service Management Frameworks to simplify cloud adoption helping enterprises improve the management and governance of their cloud environments. Providing end-to-end deployable patterns that include interoperability between third-party offerings from AWS Marketplace and AWS management and governance services.

Director of Cybersecurity TPRM, UpGuard, Tulin is a strategic thinker and cyber risk management specialist with experience in public and private sectors. Tulin has held senior positions with Commonwealth Bank, Westpac, Optiver and Deloitte.

Amongst Tulin’s career she has successfully started up and led a cybersecurity practice at a boutique consultancy and is now leading the TPRM team at UpGuard growing the CyberRisk product and services.

Tulin specializes in cyber risk management including TPRM, cyber risk threat analysis, prevention,
control and assurance. Tulin’s past working experience spans enterprise risk management, business
continuity, risk culture analysis, project management, issues management, IT audit, data analytics,
internal audit and external audit.
Tulin has worked across multiple projects from:

• Developing and implementing successful Third-Party Risk Management Frameworks
• APRA Prudential Standard CPS234, GDPR, CCPA, NDB scheme readiness
• Information Security Officer positions
• Cyber Security Incident response exercises
• Creating and exercising data breach response plans
• Developing, managing and testing IT disaster recovery plans
• Enhancing cyber risk frameworks for various clients
• Facilitating cyber security awareness training
• Post cyber incident reviews
• Social engineering projects

Dave is an accomplished executive with a strong affinity for technology and keen business sense for the application of emerging solutions. He has a proven talent for identifying core business needs and translating into outcomes.

Prior to joining Haventec Dave spent ~20 years at Accenture where he occupied a number of geographic leadership, account leadership and delivery leadership roles including Managing Director for Accenture Digital (AU and NZ), Inclusion and Diversity Lead (AU), Capital Markets Lead (AU) as well as Client Leadership roles for a number of Accenture’s Financial Services clients.

Prior to joining Accenture Dave spent five years at the Australian Stock exchange in a number of roles including the Internet and Information Security Lead.

Ben Johnson is CTO and co-founder of Obsidian Security. Prior to founding Obsidian, he co-founded Carbon Black and most recently served as the company’s Chief Security Strategist. As the company’s original CTO, he led efforts to create the powerful capabilities that helped define the next-generation endpoint security space.

Prior to Carbon Black, Ben was an NSA computer scientist, and later worked as a cyber engineer in an advanced intrusion operations division for the intelligence community.

Ben is active in the cybersecurity community, where he is a technical advisor to the US FISA Court and sits on the boards of multiple security startups. Ben earned a bachelor’s degree in computer science from the University of Chicago and a master’s degree in computer science from Johns Hopkins University. He lives in Newport Beach, CA with his wife and three sons.

My passion for cyber-security stems from my interest in mystery novels and crime shows since the age of 8. Somehow, I enjoyed the process of unravelling the unidentified. Being an ardent leaner, I explored my interest in computer science and being a consistent school topper, I was fortunate enough to secure the Vice-Chancellor scholarship at Western Sydney University. As an addition to my degree, I am working as research assistant with a Cyber-security Professor in WSU; assisting in her research in Ethical Hacking and Payment Fraud.

Outside my degree, I work as a volunteer for several institutions and non-profit organisations. To spread awareness about internet security and safety among elders, I undertook the role of a key speaker in the Digital Literacy Program for Senior Citizens at the Indian Support Center; a contribution to the senior citizens. I am recently selected for Microsoft Student Accelerator Program (MSA) to coordinate as Marketing Lead for my University (WSU); was successful in getting more than 1500 registrations for the program and currently head MSA’s Social Media team.

Cyber-security is expected to continue to boom in future and become a necessity for every company. As a student, it’s my duty to raise cyber awareness among the common kin and understand each aspect of security As an entrant in Cyber-security, I am overwhelmed by the plethora of opportunities in Cyber-security hence, I grab every chance to interact with veterans in the field.

Todd is a 33-year-old entrepreneur who started computer programming when he was 7 years of age. He earned a scholarship in 2004, and graduated with honours in 2006. He started an onsite computer repair business, to pay for fuel during University, and has since had a slew of start-ups that have been successful.

Todd is currently focused on a new cybersecurity business called Dull. With new technology, Dull helps customers and vendors build new solutions together more rapidly. The technology will ultimately be built-out as a unifying platform for enterprises.

Garrett O’Hara is the Principal Technical Consultant at Mimecast having joined in 2015 with the opening of the Sydney office, leading the growth and development of the local team. With over 20 years of experience across development, UI/UX, technology communication, training development and mentoring, Garrett now works to help organisations understand and manage their cyber resilience strategies and is a regular industry commentator on the cyber security landscape, data assurance approaches and business continuity.

Sam is a young technology enthusiast who’s found passion in cybersecurity at an early age. He was recruited to work for the Australian government while still in high school. He founded Kasada before turning 20 and has been able to raise USD 7 million at the end of 2019 with CIA backed In-Q-Tel as its latest investor. Kasada provides a solution that helps organisations protect from user account takeovers, fraud, data scraping and other disruptive attacks.